3 matches found
CVE-2018-15442
CVE-2018-15442 concerns Cisco Webex Meetings Desktop App on Windows. The issue is a command-injection in the Update Service (WebExService) caused by insufficient validation of user-supplied parameters. An authenticated, local attacker could invoke the update command with a crafted argument and ex...
CVE-2021-1536
CVE-2021-1536 affects Cisco Webex products on Windows (Webex Meetings Desktop App, Webex Meetings Server, Webex Network Recording Player, and Webex Teams). The issue is a directory-path handling flaw that lets an authenticated, local attacker place a configuration file to cause loading of a malic...
CVE-2021-1502
CVE-2021-1502 affects Cisco Webex Network Recording Player and Webex Player for Windows and macOS. Root cause: memory corruption due to insufficient validation of ARF/WRF recording files. Attackers can deliver a crafted ARF/WRF via a link or email attachment and persuade a user to open it, enabli...