Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco meeting server 2.0.3 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2016-6448
A vulnerability in the Session Description Protocol (SDP) parser of Cisco Meeting Server could allow an unauthenticated, remote malicious user to execute arbitrary code on an affected system. This vulnerability affects the following products: Cisco Meeting Server releases prior t...
Cisco Meeting Server 2.0.3
Cisco Meeting Server 1.8.15
Cisco Meeting Server 2.0.1
Cisco Meeting Server 1.8 Base
Cisco Meeting Server 1.9.2
Cisco Meeting Server 1.9.0
Cisco Meeting Server 2.0.4
Cisco Meeting Server 2.0.0
Cisco Meeting Server 2.0.5
9.1
CVSSv3
CVE-2016-6445
A vulnerability in the Extensible Messaging and Presence Protocol (XMPP) service of the Cisco Meeting Server (CMS) prior to 2.0.6 and Acano Server prior to 1.8.18 and 1.9.x prior to 1.9.6 could allow an unauthenticated, remote malicious user to masquerade as a legitimate user. Th...
Cisco Meeting Server 2.0.3
Cisco Meeting Server 1.8.15
Cisco Meeting Server 2.0.1
Cisco Meeting Server 1.8 Base
Cisco Meeting Server 1.9.2
Cisco Meeting Server 1.9.0
Cisco Meeting Server 2.0.4
Cisco Meeting Server 2.0.0
Cisco Meeting Server 2.0.5
8.8
CVSSv3
CVE-2016-6444
A vulnerability in Cisco Meeting Server could allow an unauthenticated, remote malicious user to conduct a cross-site request forgery (CSRF) attack against a Web Bridge user. More Information: CSCvb03308. Known Affected Releases: 1.8, 1.9, 2.0.
Cisco Meeting Server 2.0.3
Cisco Meeting Server 1.8.15
Cisco Meeting Server 2.0.1
Cisco Meeting Server 1.8 Base
Cisco Meeting Server 1.9.2
Cisco Meeting Server 1.9.0
Cisco Meeting Server 2.0.4
Cisco Meeting Server 2.0.0
Cisco Meeting Server 2.0.5
8.1
CVSSv3
CVE-2017-3837
An HTTP Packet Processing vulnerability in the Web Bridge interface of the Cisco Meeting Server (CMS), formerly Acano Conferencing Server, could allow an authenticated, remote malicious user to retrieve memory contents, which could lead to the disclosure of confidential informati...
Cisco Meeting Server 2.0.3
Cisco Meeting Server 2.1.1
Cisco Meeting Server 2.0.1
Cisco Meeting Server 2.1.0
Cisco Meeting Server 2.0.9
Cisco Meeting Server 2.0.4
Cisco Meeting Server 2.0.0
Cisco Meeting Server 2.0.6
Cisco Meeting Server 2.0.5
Cisco Meeting Server 2.0.8
Cisco Meeting Server 2.0.7
7.5
CVSSv3
CVE-2017-3730
In OpenSSL 1.1.0 prior to 1.1.0d, if a malicious server supplies bad parameters for a DHE or ECDHE key exchange then this can result in the client attempting to dereference a NULL pointer leading to a client crash. This could be exploited in a Denial of Service attack.
Openssl Openssl 1.1.0c
Openssl Openssl 1.1.0b
Openssl Openssl 1.1.0
Openssl Openssl 1.1.0a
Oracle Jd Edwards Enterpriseone Tools 9.2
Oracle Agile Engineering Data Management 6.1.3
Oracle Agile Engineering Data Management 6.2.0
Oracle Jd Edwards World Security A9.1
Oracle Jd Edwards World Security A9.2
Oracle Jd Edwards World Security A9.3
Oracle Jd Edwards World Security A9.4
Oracle Communications Operations Monitor 3.4
Oracle Communications Operations Monitor 4.0
Oracle Communications Eagle Lnp Application Processor 10.0
Oracle Communications Eagle Lnp Application Processor 10.1
Oracle Communications Eagle Lnp Application Processor 10.2
Oracle Communications Application Session Controller 3.7.1
Oracle Communications Application Session Controller 3.8.0
1 EDB exploit
1 Github repository
1 Article
7.5
CVSSv3
CVE-2017-3733
During a renegotiation handshake if the Encrypt-Then-Mac extension is negotiated where it was not in the original handshake (or vice-versa) then this can cause OpenSSL 1.1.0 prior to 1.1.0e to crash (dependent on ciphersuite). Both clients and servers are affected.
Openssl Openssl 1.1.0c
Openssl Openssl 1.1.0b
Openssl Openssl 1.1.0d
Openssl Openssl 1.1.0
Openssl Openssl 1.1.0a
Hp Operations Agent 11.15
Hp Operations Agent 11.14
1 Github repository
7.5
CVSSv3
CVE-2016-6446
A vulnerability in Web Bridge for Cisco Meeting Server could allow an unauthenticated, remote malicious user to retrieve memory from a connected server. More Information: CSCvb03308. Known Affected Releases: 1.8, 1.9, 2.0.
Cisco Meeting Server 2.0.3
Cisco Meeting Server 1.8.15
Cisco Meeting Server 2.0.1
Cisco Meeting Server 1.8 Base
Cisco Meeting Server 1.9.2
Cisco Meeting Server 1.9.0
Cisco Meeting Server 2.0.4
Cisco Meeting Server 2.0.0
Cisco Meeting Server 2.0.5
6.7
CVSSv3
CVE-2017-6794
A vulnerability in the CLI command-parsing code of Cisco Meeting Server could allow an authenticated, local malicious user to perform command injection and escalate their privileges to root. The attacker must first authenticate to the application with valid administrator credenti...
Cisco Meeting Server 2.0.11
Cisco Meeting Server 2.0.15
Cisco Meeting Server 2.0.3
Cisco Meeting Server 2.0.2
Cisco Meeting Server 2.1.11
Cisco Meeting Server 2.1.8
Cisco Meeting Server 2.0.16
Cisco Meeting Server 2.1.1
Cisco Meeting Server 2.0.13
Cisco Meeting Server 2.2.0
Cisco Meeting Server 2.0.1
Cisco Meeting Server 2.0.14
Cisco Meeting Server 2.1.0
Cisco Meeting Server 2.1.5
Cisco Meeting Server 2.0.9
Cisco Meeting Server 2.1.6
Cisco Meeting Server 2.1.10
Cisco Meeting Server 2.1.2
Cisco Meeting Server 2.0.4
Cisco Meeting Server 2.1.9
Cisco Meeting Server 2.0.0
Cisco Meeting Server 2.0.12
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started