Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco webex meetings server vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2014-8035
The web framework in Cisco WebEx Meetings Server produces different returned messages for URL requests depending on whether a username exists, which allows remote malicious users to enumerate user accounts via a series of requests, aka Bug ID CSCuj40247.
Cisco Webex Meetings Server -
5
CVSSv2
CVE-2014-3286
The web framework in Cisco WebEx Meeting Server does not properly restrict the content of reply messages, which allows remote malicious users to obtain sensitive information via a crafted URL, aka Bug IDs CSCuj81685, CSCuj81688, CSCuj81665, CSCuj81744, and CSCuj81661.
Cisco Webex Meetings Server -
4
CVSSv2
CVE-2014-3294
Cisco WebEx Meeting Server does not properly restrict the content of URLs, which allows remote authenticated users to obtain sensitive information by reading (1) web-server access logs, (2) web-server Referer logs, or (3) the browser history, aka Bug ID CSCuj81691.
Cisco Webex Meetings Server -
6.8
CVSSv2
CVE-2014-2186
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco WebEx Meetings Server allows remote malicious users to hijack the authentication of arbitrary users, aka Bug ID CSCuj81777.
Cisco Webex Meetings Server -
5
CVSSv2
CVE-2014-8036
The outlookpa component in Cisco WebEx Meetings Server does not properly validate API input, which allows remote malicious users to modify a meeting's invite list via a crafted URL, aka Bug ID CSCuj40254.
Cisco Webex Meetings Server -
4.3
CVSSv2
CVE-2014-8030
Cross-site scripting (XSS) vulnerability in sendPwMail.do in Cisco WebEx Meetings Server allows remote malicious users to inject arbitrary web script or HTML via the email parameter, aka Bug ID CSCuj40381.
Cisco Webex Meetings Server -
1 Article
6.8
CVSSv2
CVE-2014-8031
Cross-site request forgery (CSRF) vulnerability in Cisco WebEx Meetings Server allows remote malicious users to hijack the authentication of arbitrary users, aka Bug ID CSCuj40456.
Cisco Webex Meetings Server -
1 Article
9.3
CVSSv2
CVE-2020-3194
A vulnerability in Cisco Webex Network Recording Player for Microsoft Windows and Cisco Webex Player for Microsoft Windows could allow an malicious user to execute arbitrary code on an affected system. The vulnerability exists due to insufficient validation of certain elements wi...
Cisco Webex Network Recording Player
Cisco Webex Meetings
Cisco Webex Meetings Online
Cisco Webex Meetings Server
Cisco Webex Meetings Server 4.0
5
CVSSv2
CVE-2014-0691
Cisco WebEx Meetings Server prior to 1.1 uses meeting IDs with insufficient entropy, which makes it easier for remote malicious users to bypass authentication and join arbitrary meetings without a password, aka Bug ID CSCuc79643.
Cisco Webex Meetings Server
4
CVSSv2
CVE-2013-3448
Cisco WebEx Meetings Server does not check whether a user account is active, which allows remote authenticated users to bypass intended access restrictions by performing meeting operations after account deactivation, aka Bug ID CSCuh33315.
Cisco Webex Meetings Server -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »