Webex Meeting Center Security Vulnerabilities and Issues — Webex Meeting Center CVE List

Lucene search

CiscoWebex Meeting Center

10 matches found

CVE•added 2017/02/01 11:59 a.m.•139 views

CVE-2017-3823

An issue was discovered in the Cisco WebEx Extension before 1.0.7 on Google Chrome, the ActiveTouch General Plugin Container before 106 on Mozilla Firefox, the GpcContainer Class ActiveX control plugin before 10031.6.2017.0126 on Internet Explorer, and the Download Manager ActiveX control plugin be...

9.3CVSS8.8AI score0.79238EPSS

CVE•added 2017/07/25 7:29 p.m.•84 views

CVE-2017-6753

A vulnerability in Cisco WebEx browser extensions for Google Chrome and Mozilla Firefox could allow an unauthenticated, remote attacker to execute arbitrary code with the privileges of the affected browser on an affected system. This vulnerability affects the browser extensions for Cisco WebEx Meet...

9.3CVSS8.6AI score0.16696EPSS

CVE•added 2017/10/19 8:29 a.m.•60 views

CVE-2017-12298

A vulnerability in Cisco WebEx Meeting Center could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of an affected system. The vulnerability is due to insufficient input validation of some parameters that are passed to the web server of the af...

6.1CVSS6AI score0.00232EPSS

CVE•added 2017/11/30 9:29 a.m.•58 views

CVE-2017-12366

6.1CVSS6AI score0.00232EPSS

CVE•added 2017/11/30 9:29 a.m.•54 views

CVE-2017-12359

A Buffer Overflow vulnerability in Cisco WebEx Network Recording Player for Advanced Recording Format (.arf) files could allow an attacker to execute arbitrary code on a system. An attacker could exploit this vulnerability by providing a user with a malicious .arf file via email or URL and convinci...

6.5CVSS7AI score0.01027EPSS

CVE•added 2017/10/19 8:29 a.m.•52 views

CVE-2017-12286

A vulnerability in the web interface of Cisco Jabber could allow an authenticated, local attacker to retrieve user profile information from the affected software, which could lead to the disclosure of confidential information. The vulnerability is due to a lack of input and validation checks in the...

5.5CVSS5.3AI score0.00078EPSS

CVE•added 2017/11/30 9:29 a.m.•47 views

CVE-2017-12360

A vulnerability in Cisco WebEx Network Recording Player for WebEx Recording Format (WRF) files could allow an attacker to cause a denial of service (DoS) condition. An attacker could exploit this vulnerability by providing a user with a malicious WRF file via email or URL and convincing the user to...

4.3CVSS4.7AI score0.00296EPSS

CVE•added 2017/11/30 9:29 a.m.•47 views

CVE-2017-12365

A vulnerability in Cisco WebEx Event Center could allow an authenticated, remote attacker to view unlisted meeting information. The vulnerability is due to a design flaw in the product. An attacker could execute a query on an Event Center site to view scheduled meetings. A successful query would sh...

4.3CVSS4.6AI score0.00253EPSS

CVE•added 2017/01/26 7:59 a.m.•45 views

CVE-2017-3799

A vulnerability in a URL parameter of Cisco WebEx Meeting Center could allow an unauthenticated, remote attacker to perform site redirection. More Information: CSCzu78401. Known Affected Releases: T28.1.

5.8CVSS5.4AI score0.00211EPSS

CVE•added 2017/11/30 9:29 a.m.•43 views

CVE-2017-12297

A vulnerability in Cisco WebEx Meeting Center could allow an authenticated, remote attacker to initiate connections to arbitrary hosts, aka a "URL Redirection Vulnerability." The vulnerability is due to insufficient access control for HTTP traffic directed to the Cisco WebEx Meeting Center. An atta...

5CVSS5.2AI score0.00237EPSS