12 matches found
EUVD-2020-24468
Malware in sbrugna...
Cisco Meetings App Authorization Issues Vulnerability
Cisco Meetings App is a video conferencing application from Cisco USA. An authorization issue vulnerability exists in the API subsystem in Cisco Meetings App, which stems from a flaw in the protection mechanism for TURN server credentials. A remote attacker can exploit this vulnerability by...
CVE-2020-3197
A vulnerability in the API subsystem of Cisco Meetings App could allow an unauthenticated, remote attacker to retain and reuse the Traversal Using Relay NAT TURN server credentials that are configured in an affected system. The vulnerability is due to insufficient protection mechanisms for the TU...
Cross site scripting
A vulnerability in the API subsystem of Cisco Meetings App could allow an unauthenticated, remote attacker to retain and reuse the Traversal Using Relay NAT TURN server credentials that are configured in an affected system. The vulnerability is due to insufficient protection mechanisms for the TU...
CVE-2020-3197 Cisco Meetings App Missing TURN Server Credentials Expiration Vulnerability
A vulnerability in the API subsystem of Cisco Meetings App could allow an unauthenticated, remote attacker to retain and reuse the Traversal Using Relay NAT TURN server credentials that are configured in an affected system. The vulnerability is due to insufficient protection mechanisms for the TU...
CVE-2020-3197 Cisco Meetings App Missing TURN Server Credentials Expiration Vulnerability
A vulnerability in the API subsystem of Cisco Meetings App could allow an unauthenticated, remote attacker to retain and reuse the Traversal Using Relay NAT TURN server credentials that are configured in an affected system. The vulnerability is due to insufficient protection mechanisms for the TU...
CVE-2020-3197
The CVE-2020-3197 entry concerns Cisco Meetings App: an API subsystem vulnerability that allows an unauthenticated, remote attacker to obtain and reuse TURN server credentials by intercepting legitimate traffic due to insufficient protection of those credentials. Impact described: attacker could ...
Cisco Meetings App Missing TURN Server Credentials Expiration Vulnerability
A vulnerability in the API subsystem of Cisco Meetings App could allow an unauthenticated, remote attacker to retain and reuse the Traversal Using Relay NAT TURN server credentials that are configured in an affected system. The vulnerability is due to insufficient protection mechanisms for the TU...
The vulnerability of the multimedia content viewing function in Cisco WebEx Meetings Server’s software for web conferencing allows a intruder to gain unauthorized access to protected information.
The vulnerability of the multimedia content viewing function in Cisco WebEx Meetings Server software is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information from a remote location...
CVE-2019-1678 Cisco Meeting Server Denial of Service Vulnerability
A vulnerability in Cisco Meeting Server could allow an authenticated, remote attacker to cause a partial denial of service DoS to Cisco Meetings application users who are paired with a Session Initiation Protocol SIP endpoint. The vulnerability is due to improper validation of coSpaces...
CVE-2019-1678
The CVE-2019-1678 entry concerns Cisco Meeting Server. Affected product: Cisco Meeting Server (CMS) where the issue lies in improper validation of coSpaces configuration parameters. The root cause enables an authenticated, remote attacker to cause a partial denial of service to Cisco Meetings use...
CVE-2017-6651
A vulnerability in Cisco WebEx Meetings Server could allow unauthenticated, remote attackers to gain information that could allow them to access scheduled customer meetings. The vulnerability is due to an incomplete configuration of the robots.txt file on customer-hosted WebEx solutions and occur...