Webex Meetings Server Security Vulnerabilities and Issues — Webex Meetings Server CVE List

Lucene search

CiscoWebex Meetings Server

7 matches found

CVE•added 2017/11/02 4:29 p.m.•54 views

CVE-2017-12295

A vulnerability in Cisco WebEx Meetings Server could allow an unauthenticated, remote attacker to access sensitive data about the application. An attacker could exploit this vulnerability to gain information to conduct additional reconnaissance attacks. The vulnerability is due to the HTTP header r...

5.3CVSS5.4AI score0.00361EPSS

CVE•added 2017/11/30 9:29 a.m.•54 views

CVE-2017-12359

A Buffer Overflow vulnerability in Cisco WebEx Network Recording Player for Advanced Recording Format (.arf) files could allow an attacker to execute arbitrary code on a system. An attacker could exploit this vulnerability by providing a user with a malicious .arf file via email or URL and convinci...

6.5CVSS7AI score0.01027EPSS

CVE•added 2017/11/30 9:29 a.m.•53 views

CVE-2017-12372

A "Cisco WebEx Network Recording Player Remote Code Execution Vulnerability" exists in Cisco WebEx Network Recording Player for Advanced Recording Format (ARF) and WebEx Recording Format (WRF) files. A remote attacker could exploit this by providing a user with a malicious ARF or WRF file via email...

9.6CVSS9.6AI score0.02154EPSS

CVE•added 2017/11/30 9:29 a.m.•51 views

CVE-2017-12367

A "Cisco WebEx Network Recording Player Denial of Service Vulnerability" exists in Cisco WebEx Network Recording Player for Advanced Recording Format (ARF) and WebEx Recording Format (WRF) files. A remote attacker could exploit this by providing a user with a malicious ARF or WRF file via email or ...

9.6CVSS9.4AI score0.01213EPSS

CVE•added 2017/11/30 9:29 a.m.•48 views

CVE-2017-12368

9.6CVSS9.6AI score0.02154EPSS

CVE•added 2017/11/30 9:29 a.m.•46 views

CVE-2017-12363

A vulnerability in Cisco WebEx Meeting Server could allow an unauthenticated, remote attacker to modify the welcome message of a meeting on an affected system. The vulnerability is due to insufficient security settings on meetings. An attacker could exploit this vulnerability by modifying the welco...

5.3CVSS5.3AI score0.00876EPSS

CVE•added 2017/11/02 4:29 p.m.•45 views

CVE-2017-12294

A vulnerability in Cisco WebEx Meetings Server could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the affected system. The vulnerability is due to insufficient input validation of some parameters that are passed to the web server of the af...

5.4CVSS5.3AI score0.00235EPSS