cisco meeting server 2.0.1 vulnerabilities and exploits

(subscribe to this query)

A vulnerability in Cisco Meeting Server could allow an unauthenticated, remote malicious user to conduct a cross-site request forgery (CSRF) attack against a Web Bridge user. More Information: CSCvb03308. Known Affected Releases: 1.8, 1.9, 2.0.

Cisco Meeting Server 2.0.0 Cisco Meeting Server 1.8.15 Cisco Meeting Server 1.8 Base Cisco Meeting Server 2.0.3 Cisco Meeting Server 2.0.5 Cisco Meeting Server 1.9.0 Cisco Meeting Server 1.9.2 Cisco Meeting Server 2.0.1 Cisco Meeting Server 2.0.4

A vulnerability in the Extensible Messaging and Presence Protocol (XMPP) service of the Cisco Meeting Server (CMS) prior to 2.0.6 and Acano Server prior to 1.8.18 and 1.9.x prior to 1.9.6 could allow an unauthenticated, remote malicious user to masquerade as a legitimate user. Th...

Cisco Meeting Server 2.0.1 Cisco Meeting Server 2.0.4 Cisco Meeting Server 2.0.0 Cisco Meeting Server 1.8.15 Cisco Meeting Server 1.8 Base Cisco Meeting Server 2.0.3 Cisco Meeting Server 2.0.5 Cisco Meeting Server 1.9.0 Cisco Meeting Server 1.9.2

A vulnerability in Web Bridge for Cisco Meeting Server could allow an unauthenticated, remote malicious user to retrieve memory from a connected server. More Information: CSCvb03308. Known Affected Releases: 1.8, 1.9, 2.0.

Cisco Meeting Server 2.0.1 Cisco Meeting Server 2.0.4 Cisco Meeting Server 1.8 Base Cisco Meeting Server 2.0.3 Cisco Meeting Server 2.0.5 Cisco Meeting Server 1.9.0 Cisco Meeting Server 1.9.2 Cisco Meeting Server 2.0.0 Cisco Meeting Server 1.8.15

A vulnerability in the Session Description Protocol (SDP) parser of Cisco Meeting Server could allow an unauthenticated, remote malicious user to execute arbitrary code on an affected system. This vulnerability affects the following products: Cisco Meeting Server releases prior t...

Cisco Meeting Server 2.0.3 Cisco Meeting Server 1.9.0 Cisco Meeting Server 1.9.2 Cisco Meeting Server 2.0.1 Cisco Meeting Server 1.8 Base Cisco Meeting Server 2.0.5 Cisco Meeting Server 2.0.4 Cisco Meeting Server 2.0.0 Cisco Meeting Server 1.8.15

An HTTP Packet Processing vulnerability in the Web Bridge interface of the Cisco Meeting Server (CMS), formerly Acano Conferencing Server, could allow an authenticated, remote malicious user to retrieve memory contents, which could lead to the disclosure of confidential informati...

Cisco Meeting Server 2.1.1 Cisco Meeting Server 2.0.1 Cisco Meeting Server 2.0.9 Cisco Meeting Server 2.1.0 Cisco Meeting Server 2.0.6 Cisco Meeting Server 2.0.3 Cisco Meeting Server 2.0.4 Cisco Meeting Server 2.0.5 Cisco Meeting Server 2.0.7 Cisco Meeting Server 2.0.8 Cisco Meeting Server 2.0.0

A vulnerability in the CLI command-parsing code of Cisco Meeting Server could allow an authenticated, local malicious user to perform command injection and escalate their privileges to root. The attacker must first authenticate to the application with valid administrator credenti...

A vulnerability in Cisco Meeting Server and Meeting App could allow an unauthenticated, remote malicious user to execute arbitrary code on an affected system. This vulnerability affects the following products: Cisco Meeting Server releases before 2.0.1, Acano Server releases befo...

Cisco Meeting Server 1.8 Base Cisco Meeting Server 2.0.0 Cisco Meeting App 1.8.0 Cisco Meeting Server 1.9.0 Cisco Meeting App 1.9.0

A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the application is deployed as a Spring Boot executable jar, i.e....

Vmware Spring Framework Cisco Cx Cloud Agent Oracle Sd-wan Edge 9.0 Oracle Retail Xstore Point Of Service 20.0.1 Oracle Communications Cloud Native Core Security Edge Protection Proxy 1.7.0 Oracle Financial Services Analytical Applications Infrastructure 8.1.1 Oracle Sd-wan Edge 9.1 Siemens Siveillance Identity 1.6 Siemens Siveillance Identity 1.5 Siemens Sipass Integrated 2.85 Siemens Sipass Integrated 2.80 Oracle Product Lifecycle Analytics 3.6.1 Oracle Financial Services Enterprise Case Management 8.1.1.0 Oracle Financial Services Enterprise Case Management 8.1.1.1 Oracle Financial Services Behavior Detection Platform 8.1.2.0 Oracle Financial Services Behavior Detection Platform 8.1.1.1 Oracle Financial Services Behavior Detection Platform 8.1.1.0 Oracle Communications Cloud Native Core Console 1.9.0 Oracle Communications Cloud Native Core Policy 1.15.0 Oracle Communications Cloud Native Core Unified Data Repository 1.15.0 Oracle Communications Cloud Native Core Unified Data Repository 22.1.0 Oracle Communications Cloud Native Core Security Edge Protection Proxy 22.1.0

167 Github repositories7 Articles

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook