Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco meeting server 2.0.3 vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2016-6444
A vulnerability in Cisco Meeting Server could allow an unauthenticated, remote malicious user to conduct a cross-site request forgery (CSRF) attack against a Web Bridge user. More Information: CSCvb03308. Known Affected Releases: 1.8, 1.9, 2.0.
Cisco Meeting Server 2.0.0
Cisco Meeting Server 1.8.15
Cisco Meeting Server 1.8 Base
Cisco Meeting Server 2.0.3
Cisco Meeting Server 2.0.5
Cisco Meeting Server 1.9.0
Cisco Meeting Server 1.9.2
Cisco Meeting Server 2.0.1
Cisco Meeting Server 2.0.4
570
VMScore
CVE-2016-6445
A vulnerability in the Extensible Messaging and Presence Protocol (XMPP) service of the Cisco Meeting Server (CMS) prior to 2.0.6 and Acano Server prior to 1.8.18 and 1.9.x prior to 1.9.6 could allow an unauthenticated, remote malicious user to masquerade as a legitimate user. Th...
Cisco Meeting Server 2.0.1
Cisco Meeting Server 2.0.4
Cisco Meeting Server 2.0.0
Cisco Meeting Server 1.8.15
Cisco Meeting Server 1.8 Base
Cisco Meeting Server 2.0.3
Cisco Meeting Server 2.0.5
Cisco Meeting Server 1.9.0
Cisco Meeting Server 1.9.2
668
VMScore
CVE-2016-6448
A vulnerability in the Session Description Protocol (SDP) parser of Cisco Meeting Server could allow an unauthenticated, remote malicious user to execute arbitrary code on an affected system. This vulnerability affects the following products: Cisco Meeting Server releases prior t...
Cisco Meeting Server 2.0.3
Cisco Meeting Server 1.9.0
Cisco Meeting Server 1.9.2
Cisco Meeting Server 2.0.1
Cisco Meeting Server 1.8 Base
Cisco Meeting Server 2.0.5
Cisco Meeting Server 2.0.4
Cisco Meeting Server 2.0.0
Cisco Meeting Server 1.8.15
445
VMScore
CVE-2016-6446
A vulnerability in Web Bridge for Cisco Meeting Server could allow an unauthenticated, remote malicious user to retrieve memory from a connected server. More Information: CSCvb03308. Known Affected Releases: 1.8, 1.9, 2.0.
Cisco Meeting Server 2.0.1
Cisco Meeting Server 2.0.4
Cisco Meeting Server 1.8 Base
Cisco Meeting Server 2.0.3
Cisco Meeting Server 2.0.5
Cisco Meeting Server 1.9.0
Cisco Meeting Server 1.9.2
Cisco Meeting Server 2.0.0
Cisco Meeting Server 1.8.15
490
VMScore
CVE-2017-3837
An HTTP Packet Processing vulnerability in the Web Bridge interface of the Cisco Meeting Server (CMS), formerly Acano Conferencing Server, could allow an authenticated, remote malicious user to retrieve memory contents, which could lead to the disclosure of confidential informati...
Cisco Meeting Server 2.1.1
Cisco Meeting Server 2.0.1
Cisco Meeting Server 2.0.9
Cisco Meeting Server 2.1.0
Cisco Meeting Server 2.0.6
Cisco Meeting Server 2.0.3
Cisco Meeting Server 2.0.4
Cisco Meeting Server 2.0.5
Cisco Meeting Server 2.0.7
Cisco Meeting Server 2.0.8
Cisco Meeting Server 2.0.0
641
VMScore
CVE-2017-6794
A vulnerability in the CLI command-parsing code of Cisco Meeting Server could allow an authenticated, local malicious user to perform command injection and escalate their privileges to root. The attacker must first authenticate to the application with valid administrator credenti...
Cisco Meeting Server 2.0.16
Cisco Meeting Server 2.0.15
Cisco Meeting Server 2.0.14
Cisco Meeting Server 2.0.13
Cisco Meeting Server 2.0.12
Cisco Meeting Server 2.1.11
Cisco Meeting Server 2.0.0
Cisco Meeting Server 2.0.1
Cisco Meeting Server 2.0.3
Cisco Meeting Server 2.0.10
Cisco Meeting Server 2.1.2
Cisco Meeting Server 2.1.7
Cisco Meeting Server 2.1.9
Cisco Meeting Server 2.0.5
Cisco Meeting Server 2.0.7
Cisco Meeting Server 2.1.3
Cisco Meeting Server 2.1.4
Cisco Meeting Server 2.1.5
Cisco Meeting Server 2.1.6
Cisco Meeting Server 2.0.9
Cisco Meeting Server 2.1.0
Cisco Meeting Server 2.1.1
445
VMScore
CVE-2017-3733
During a renegotiation handshake if the Encrypt-Then-Mac extension is negotiated where it was not in the original handshake (or vice-versa) then this can cause OpenSSL 1.1.0 prior to 1.1.0e to crash (dependent on ciphersuite). Both clients and servers are affected.
Openssl Openssl 1.1.0
Openssl Openssl 1.1.0c
Openssl Openssl 1.1.0d
Openssl Openssl 1.1.0a
Openssl Openssl 1.1.0b
Hp Operations Agent 11.15
Hp Operations Agent 11.14
1 Github repository
505
VMScore
CVE-2017-3730
In OpenSSL 1.1.0 prior to 1.1.0d, if a malicious server supplies bad parameters for a DHE or ECDHE key exchange then this can result in the client attempting to dereference a NULL pointer leading to a client crash. This could be exploited in a Denial of Service attack.
Openssl Openssl 1.1.0c
Openssl Openssl 1.1.0
Openssl Openssl 1.1.0b
Openssl Openssl 1.1.0a
Oracle Agile Engineering Data Management 6.2.0
Oracle Jd Edwards World Security A9.2
Oracle Communications Eagle Lnp Application Processor 10.1
Oracle Communications Application Session Controller 3.7.1
Oracle Jd Edwards World Security A9.4
Oracle Jd Edwards Enterpriseone Tools 9.2
Oracle Communications Operations Monitor 3.4
Oracle Communications Operations Monitor 4.0
Oracle Agile Engineering Data Management 6.1.3
Oracle Jd Edwards World Security A9.1
Oracle Jd Edwards World Security A9.3
Oracle Communications Eagle Lnp Application Processor 10.0
Oracle Communications Eagle Lnp Application Processor 10.2
Oracle Communications Application Session Controller 3.8.0
1 EDB exploit
1 Github repository
1 Article
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site request forgery
CVE-2024-34351
CVE-2024-1076
CVE-2024-25522
CVE-2024-34547
CVE-2024-4644
unauthorized
remote
CVE-2024-4671
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started