Webex Meetings Server@2.6.0 Security Vulnerabilities and Issues — Webex Meetings Server@2.6.0 CVE List

Lucene search

CiscoWebex Meetings Server2.6.0

7 matches found

CVE•added 2017/07/25 7:29 p.m.•84 views

CVE-2017-6753

A vulnerability in Cisco WebEx browser extensions for Google Chrome and Mozilla Firefox could allow an unauthenticated, remote attacker to execute arbitrary code with the privileges of the affected browser on an affected system. This vulnerability affects the browser extensions for Cisco WebEx Meet...

9.3CVSS8.6AI score0.16696EPSS

CVE•added 2017/11/30 9:29 a.m.•54 views

CVE-2017-12359

A Buffer Overflow vulnerability in Cisco WebEx Network Recording Player for Advanced Recording Format (.arf) files could allow an attacker to execute arbitrary code on a system. An attacker could exploit this vulnerability by providing a user with a malicious .arf file via email or URL and convinci...

6.5CVSS7AI score0.01027EPSS

CVE•added 2017/03/17 10:59 p.m.•51 views

CVE-2017-3880

An Authentication Bypass vulnerability in Cisco WebEx Meetings Server could allow an unauthenticated, remote attacker to access limited meeting information on the Cisco WebEx Meetings Server. More Information: CSCvd50728. Known Affected Releases: 2.6 2.7 2.8 CWMS-2.5MR1 Orion1.1.2.patch T29_orion_m...

6.5CVSS6.4AI score0.00379EPSS

CVE•added 2017/01/26 7:59 a.m.•50 views

CVE-2017-3795

A vulnerability in Cisco WebEx Meetings Server could allow an authenticated, remote attacker to conduct arbitrary password changes against any non-administrative user. More Information: CSCuz03345. Known Affected Releases: 2.6. Known Fixed Releases: 2.7.1.12.

6.5CVSS5.6AI score0.00113EPSS

CVE•added 2017/01/26 7:59 a.m.•40 views

CVE-2017-3796

A vulnerability in Cisco WebEx Meetings Server could allow an authenticated, remote attacker to execute predetermined shell commands on other hosts. More Information: CSCuz03353. Known Affected Releases: 2.6.

7.2CVSS7.1AI score0.00934EPSS

CVE•added 2017/01/26 7:59 a.m.•38 views

CVE-2017-3794

A vulnerability in Cisco WebEx Meetings Server could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack against an administrative user. More Information: CSCuz03317. Known Affected Releases: 2.6. Known Fixed Releases: 2.7.1.12.

8.8CVSS8.7AI score0.00217EPSS

CVE•added 2017/05/16 5:29 p.m.•36 views

CVE-2017-6651

A vulnerability in Cisco WebEx Meetings Server could allow unauthenticated, remote attackers to gain information that could allow them to access scheduled customer meetings. The vulnerability is due to an incomplete configuration of the robots.txt file on customer-hosted WebEx solutions and occurs ...

7.5CVSS7.7AI score0.00438EPSS