Lucene search
K

9 matches found

CVE
CVE
added 2022/09/08 12:30 p.m.1346 views

CVE-2022-20863

Cisco Webex App (formerly Webex Teams) contains a vulnerability in its messaging interface that could allow an unauthenticated, remote attacker to manipulate displayed links or content by exploiting improper handling of character rendering. The issue arises when messages are processed in the inte...

5.3CVSS5AI score0.00796EPSS
CVE
CVE
added 2020/09/04 2:25 a.m.1192 views

CVE-2020-3541

CVE-2020-3541 affects Cisco Webex on Windows (Webex Meetings Client/Desktop App/Teams). The root cause is unsafe logging of authentication requests, allowing an authenticated, local attacker to read log files in the application directory and access sensitive information. Impact is information dis...

4.4CVSS4.8AI score0.00326EPSS
CVE
CVE
added 2021/01/13 9:17 p.m.870 views

CVE-2021-1242

CVE-2021-1242 affects Cisco Webex Teams (Webex/Jabber client) where the shared-file name display can be manipulated due to improper character rendering. An unauthenticated, remote attacker could share a file to alter how the file name appears in the messaging interface, enabling phishing or spoof...

4.3CVSS4.4AI score0.01352EPSS
CVE
CVE
added 2019/02/25 6:0 p.m.251 views

CVE-2019-1689

Cisco Webex Teams for iOS has a vulnerability in the iOS client app’s input validation that could allow an authenticated, remote attacker to upload arbitrary files within the app’s scope. An attacker could lure a targeted user into opening a malicious file, potentially overwriting sensitive appli...

7.3CVSS7AI score0.01574EPSS
CVE
CVE
added 2019/09/05 1:25 a.m.149 views

CVE-2019-1939

Cisco Webex Teams for Windows is affected by a command-execution vulnerability arising from improper restrictions on the software’s logging features. An unauthenticated, remote attacker can lure a target user to visit a crafted website, enabling the attacker to modify files and run arbitrary comm...

9.3CVSS8.6AI score0.04729EPSS
CVE
CVE
added 2019/11/26 3:41 a.m.115 views

CVE-2019-16001

Cisco Webex Teams for Windows is affected by CVE-2019-16001: a DLL hijacking vulnerability due to insufficient validation of resources loaded at run time. An authenticated, local attacker can craft a malicious DLL and place it in a specific location; the DLL executes when the vulnerable app launc...

5.3CVSS5.6AI score0.00377EPSS
CVE
CVE
added 2020/03/04 6:40 p.m.113 views

CVE-2020-3155

CVE-2020-3155 is a Cisco Intelligent Proximity SSL certificate validation vulnerability. The issue stems from a lack of validation of the SSL server certificate when establishing connections to Cisco Webex video devices or Cisco collaboration endpoints. An unauthenticated, remote attacker could p...

7.4CVSS7.3AI score0.00874EPSS
CVE
CVE
added 2018/10/05 2:0 p.m.67 views

CVE-2018-0436

CVE-2018-0436 concerns Cisco Webex Teams (formerly Cisco Spark). The issue arises from insufficient checks for associations between user accounts and organization accounts, enabling an authenticated, remote attacker with administrator or compliance officer privileges for one organization to view ...

8.7CVSS8.6AI score0.01284EPSS
CVE
CVE
added 2024/11/18 4:10 p.m.62 views

CVE-2020-26067

CVE-2020-26067 concerns Cisco Webex Teams web interface. Affected component: web-based interface; issue arises from improper validation of usernames. An authenticated, remote attacker can create an account containing malicious HTML/script and join a space with that name, enabling cross-site scrip...

5.4CVSS5.4AI score0.00771EPSS