Webex Meetings Server Security Vulnerabilities and Issues — Webex Meetings Server CVE List

Lucene search

CiscoWebex Meetings Server

10 matches found

CVE•added 2016/07/15 4:59 p.m.•46 views

CVE-2016-1450

Cisco WebEx Meetings Server 2.6 allows remote authenticated users to conduct command-injection attacks via vectors related to an upload's file type, aka Bug ID CSCuy92715.

7.5CVSS7AI score0.00708EPSS

CVE•added 2016/02/07 11:59 a.m.•45 views

CVE-2016-1309

Multiple cross-site scripting (XSS) vulnerabilities in Cisco WebEx Meetings Server 2.5.1.5 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuy01843.

6.1CVSS6AI score0.0025EPSS

CVE•added 2016/07/15 4:59 p.m.•44 views

CVE-2016-1446

SQL injection vulnerability in Cisco WebEx Meetings Server 2.6 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCuy83200.

8.8CVSS8.8AI score0.00688EPSS

CVE•added 2016/09/17 9:59 p.m.•43 views

CVE-2016-1482

Cisco WebEx Meetings Server 2.6 allows remote attackers to execute arbitrary commands by injecting these commands into an application script, aka Bug ID CSCuy83130.

9.3CVSS8.4AI score0.00705EPSS

CVE•added 2016/04/28 10:59 p.m.•42 views

CVE-2016-1389

Open redirect vulnerability in Cisco WebEx Meetings Server (CWMS) 2.6 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors, aka Bug ID CSCuy44695.

7.4CVSS7.3AI score0.00224EPSS

CVE•added 2016/07/17 10:59 p.m.•42 views

CVE-2016-1448

Cross-site request forgery (CSRF) vulnerability in Cisco WebEx Meetings Server 2.7 allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuy92706.

8.8CVSS8.9AI score0.00223EPSS

CVE•added 2016/09/19 1:59 a.m.•40 views

CVE-2016-1483

Cisco WebEx Meetings Server 2.6 allows remote attackers to cause a denial of service (CPU consumption) by repeatedly accessing the account-validation component of an unspecified service, aka Bug ID CSCuy92704.

7.8CVSS7.4AI score0.00514EPSS

CVE•added 2016/07/15 4:59 p.m.•38 views

CVE-2016-1447

Cross-site scripting (XSS) vulnerability in the administrator interface in Cisco WebEx Meetings Server 2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug ID CSCuy83194.

6.1CVSS6AI score0.00453EPSS

CVE•added 2016/07/15 4:59 p.m.•38 views

CVE-2016-1449

Cross-site scripting (XSS) vulnerability in Cisco WebEx Meetings Server 2.6 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCuy92711.

6.1CVSS5.9AI score0.00296EPSS

CVE•added 2016/08/23 2:10 a.m.•38 views

CVE-2016-1484

Cisco WebEx Meetings Server 2.6 allows remote attackers to bypass intended access restrictions and obtain sensitive application information via unspecified vectors, aka Bug ID CSCuy92724.

7.5CVSS7.4AI score0.00247EPSS