Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco webex meeting center - vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2017-6669
Multiple buffer overflow vulnerabilities exist in the Cisco WebEx Network Recording Player for Advanced Recording Format (ARF) files. An attacker could exploit these vulnerabilities by providing a user with a malicious ARF file via email or URL and convincing the user to launch t...
Cisco Webex Advanced Recording Format Player 29.10
5
CVSSv2
CVE-2017-6651
A vulnerability in Cisco WebEx Meetings Server could allow unauthenticated, remote malicious users to gain information that could allow them to access scheduled customer meetings. The vulnerability is due to an incomplete configuration of the robots.txt file on customer-hosted We...
Cisco Webex Meetings Server 2.6.1.39
Cisco Webex Meetings Server 2.5 Mr6
Cisco Webex Meetings Server 2.5 Mr5
Cisco Webex Meetings Server 2.6 Mr1
Cisco Webex Meetings Server 2.7 Mr1
Cisco Webex Meetings Server 2.6 Mr2
Cisco Webex Meetings Server 2.5.99.2
Cisco Webex Meetings Server 2.5.1.29
Cisco Webex Meetings Server 2.5 Mr1
Cisco Webex Meetings Server 2.5 Base
Cisco Webex Meetings Server 2.5 Mr2
Cisco Webex Meetings Server 2.6 Mr3
Cisco Webex Meetings Server 2.7 Base
Cisco Webex Meetings Server 2.7 Mr2
Cisco Webex Meetings Server 2.6.0
Cisco Webex Meetings Server 2.7.1
Cisco Webex Meetings Server 2.5.1.5
Cisco Webex Meetings Server 2.5 Mr3
Cisco Webex Meetings Server 2.8 Base
Cisco Webex Meetings Server 2.5 Mr4
5
CVSSv2
CVE-2017-3730
In OpenSSL 1.1.0 prior to 1.1.0d, if a malicious server supplies bad parameters for a DHE or ECDHE key exchange then this can result in the client attempting to dereference a NULL pointer leading to a client crash. This could be exploited in a Denial of Service attack.
Openssl Openssl 1.1.0c
Openssl Openssl 1.1.0
Openssl Openssl 1.1.0b
Openssl Openssl 1.1.0a
Oracle Agile Engineering Data Management 6.2.0
Oracle Jd Edwards World Security A9.2
Oracle Communications Eagle Lnp Application Processor 10.1
Oracle Communications Application Session Controller 3.7.1
Oracle Jd Edwards World Security A9.4
Oracle Jd Edwards Enterpriseone Tools 9.2
Oracle Communications Operations Monitor 3.4
Oracle Communications Operations Monitor 4.0
Oracle Agile Engineering Data Management 6.1.3
Oracle Jd Edwards World Security A9.1
Oracle Jd Edwards World Security A9.3
Oracle Communications Eagle Lnp Application Processor 10.0
Oracle Communications Eagle Lnp Application Processor 10.2
Oracle Communications Application Session Controller 3.8.0
1 EDB exploit
1 Github repository
1 Article
5
CVSSv2
CVE-2017-3733
During a renegotiation handshake if the Encrypt-Then-Mac extension is negotiated where it was not in the original handshake (or vice-versa) then this can cause OpenSSL 1.1.0 prior to 1.1.0e to crash (dependent on ciphersuite). Both clients and servers are affected.
Openssl Openssl 1.1.0
Openssl Openssl 1.1.0c
Openssl Openssl 1.1.0d
Openssl Openssl 1.1.0a
Openssl Openssl 1.1.0b
Hp Operations Agent 11.15
Hp Operations Agent 11.14
1 Github repository
9.3
CVSSv2
CVE-2017-3823
An issue exists in the Cisco WebEx Extension prior to 1.0.7 on Google Chrome, the ActiveTouch General Plugin Container prior to 106 on Mozilla Firefox, the GpcContainer Class ActiveX control plugin prior to 10031.6.2017.0126 on Internet Explorer, and the Download Manager ActiveX ...
Cisco Activetouch General Plugin Container 105
Cisco Webex
Cisco Download Manager 2.1.0.9
Cisco Gpccontainer Class
Cisco Webex Meetings Server 2.0 Mr7
Cisco Webex Meetings Server 2.0 Mr8
Cisco Webex Meetings Server 2.5 Mr1
Cisco Webex Meetings Server 2.5 Mr2
Cisco Webex Meetings Server 2.5 Mr6
Cisco Webex Meetings Server 2.6 Mr3
Cisco Webex Meetings Server 2.7 Base
Cisco Webex Meetings Server 2.0 Base
Cisco Webex Meetings Server 2.0 Mr2
Cisco Webex Meetings Server 2.0 Mr9
Cisco Webex Meetings Server 2.5 Mr3
Cisco Webex Meetings Server 2.6 Base
Cisco Webex Meetings Server 2.6 Mr1
Cisco Webex Meetings Server 2.7 Mr1
Cisco Webex Meetings Server 2.0 Mr5
Cisco Webex Meetings Server 2.0 Mr6
Cisco Webex Meetings Server 2.5 Base
Cisco Webex Meetings Server 2.5 Mr5
2 Articles
5.8
CVSSv2
CVE-2017-3799
A vulnerability in a URL parameter of Cisco WebEx Meeting Center could allow an unauthenticated, remote malicious user to perform site redirection. More Information: CSCzu78401. Known Affected Releases: T28.1.
Cisco Webex Meeting Center Wbs28 Base
5
CVSSv2
CVE-2016-2180
The TS_OBJ_print_bio function in crypto/ts/ts_lib.c in the X.509 Public Key Infrastructure Time-Stamp Protocol (TSP) implementation in OpenSSL up to and including 1.0.2h allows remote malicious users to cause a denial of service (out-of-bounds read and application crash) via a cr...
Openssl Openssl 1.0.1m
Openssl Openssl 1.0.2a
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.2e
Openssl Openssl 1.0.1r
Openssl Openssl 1.0.2b
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.2g
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.2h
Openssl Openssl 1.0.1d
Openssl Openssl 1.0.1t
Openssl Openssl 1.0.2c
Openssl Openssl 1.0.1p
Openssl Openssl 1.0.1k
Openssl Openssl 1.0.1b
Openssl Openssl 1.0.1n
Openssl Openssl 1.0.1q
Openssl Openssl 1.0.1e
Openssl Openssl 1.0.1l
5
CVSSv2
CVE-2016-1410
Cisco WebEx Meeting Center Original Release Base allows remote malicious users to obtain sensitive information about username validity by (1) attending or (2) hosting a meeting, aka Bug ID CSCux84312.
Cisco Webex Meeting Center -
7.8
CVSSv2
CVE-2015-6360
The encryption-processing feature in Cisco libSRTP prior to 1.5.3 allows remote malicious users to cause a denial of service via crafted fields in SRTP packets, aka Bug ID CSCux00686.
Cisco Ios Xe 3.10s 3.10.2ts
Cisco Ios Xe 3.14s 3.14.0s
Cisco Ios Xe 3.10s 3.10.2s
Cisco Ios Xe 3.15s 3.15.2s
Cisco Ios Xe 3.15s 3.15.1s
Cisco Ios Xe 3.10s 3.10.1xbs
Cisco Ios Xe 3.10s 3.10.1s
Cisco Ios Xe 3.10s 3.10.0s
Cisco Ios Xe 3.10s 3.10.6s
Cisco Ios Xe 3.11s 3.11.3s
Cisco Ios Xe 3.11s 3.11.2s
Cisco Ios Xe 3.13s 3.13.4s
Cisco Ios Xe 3.11s 3.11.1s
Cisco Ios Xe 3.11s 3.11.4s
Cisco Ios Xe 3.10s 3.10.5s
Cisco Ios Xe 3.10s 3.10.7s
Cisco Ios Xe 3.13s 3.13.1s
Cisco Ios Xe 3.13s 3.13.0s
Cisco Ios Xe 3.10s 3.10.4s
Cisco Ios Xe 3.11s 3.11.0s
Cisco Webex Meeting Center Base
Cisco Unified Ip Phone 8900 Series Firmware 9.0\\(3\\)
7.5
CVSSv2
CVE-2015-4208
Cisco WebEx Meeting Center does not properly restrict the content of URLs in GET requests, which allows remote malicious users to obtain sensitive information or conduct SQL injection attacks via vectors involving read access to a request, aka Bug ID CSCup88398.
Cisco Webex Meeting Center -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »