Webex Meetings Server@4.0 Security Vulnerabilities and Issues — Webex Meetings Server@4.0 CVE List

Lucene search

CiscoWebex Meetings Server4.0

9 matches found

CVE•added 2021/12/10 10:15 a.m.•5637 views

CVE-2021-44228

Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can control log messages or log message ...

10CVSS10AI score0.94358EPSS

CVE•added 2021/02/17 5:15 p.m.•1862 views

CVE-2021-1372

A vulnerability in Cisco Webex Meetings Desktop App and Webex Productivity Tools for Windows could allow an authenticated, local attacker to gain access to sensitive information on an affected system. This vulnerability is due to the unsafe usage of shared memory by the affected software. An attack...

5.5CVSS5.3AI score0.00047EPSS

CVE•added 2021/06/04 5:15 p.m.•76 views

CVE-2021-1536

A vulnerability in Cisco Webex Meetings Desktop App for Windows, Cisco Webex Meetings Server, Cisco Webex Network Recording Player for Windows, and Cisco Webex Teams for Windows could allow an authenticated, local attacker to perform a DLL injection attack on an affected device. To exploit this vul...

7.8CVSS6.8AI score0.00065EPSS

CVE•added 2021/06/04 5:15 p.m.•69 views

CVE-2021-1502

A vulnerability in Cisco Webex Network Recording Player for Windows and MacOS and Cisco Webex Player for Windows and MacOS could allow an attacker to execute arbitrary code on an affected system. The vulnerability is due to insufficient validation of values within Webex recording files formatted as...

7.8CVSS7.8AI score0.00452EPSS

CVE•added 2021/06/04 5:15 p.m.•66 views

CVE-2021-1503

A vulnerability in Cisco Webex Network Recording Player for Windows and MacOS and Cisco Webex Player for Windows and MacOS could allow an attacker to execute arbitrary code on an affected system. This vulnerability is due to insufficient validation of values in Webex recording files that are in eit...

7.8CVSS7.8AI score0.00452EPSS

CVE•added 2021/01/13 10:15 p.m.•52 views

CVE-2021-1311

A vulnerability in the reclaim host role feature of Cisco Webex Meetings and Cisco Webex Meetings Server could allow an authenticated, remote attacker to take over the host role during a meeting. This vulnerability is due to a lack of protection against brute forcing of the host key. An attacker co...

5.5CVSS5.4AI score0.00293EPSS

CVE•added 2021/06/04 5:15 p.m.•52 views

CVE-2021-1517

A vulnerability in the multimedia viewer feature of Cisco Webex Meetings and Cisco Webex Meetings Server could allow an authenticated, remote attacker to bypass security protections. This vulnerability is due to unsafe handling of shared content within the multimedia viewer feature. An attacker cou...

5CVSS4.7AI score0.00179EPSS

CVE•added 2021/06/04 5:15 p.m.•51 views

CVE-2021-1525

A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to redirect users to a malicious file. This vulnerability is due to improper validation of URL paths in the application interface. An attacker could exploit this vulnerability by ...

6.1CVSS5.1AI score0.00183EPSS

CVE•added 2021/02/04 5:15 p.m.•43 views

CVE-2021-1221

A vulnerability in the user interface of Cisco Webex Meetings and Cisco Webex Meetings Server Software could allow an authenticated, remote attacker to inject a hyperlink into a meeting invitation email. The vulnerability is due to insufficient input validation. An attacker could exploit this vulne...

4.1CVSS4.3AI score0.00353EPSS