9.3
CVSSv2

CVE-2018-0387

Published: 18/07/2018 Updated: 09/10/2019
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
VMScore: 828
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Summary

A vulnerability in Cisco Webex Teams (for Windows and macOS) could allow an unauthenticated, remote malicious user to execute arbitrary code on the user's device, possibly with elevated privileges. The vulnerability occurs because Cisco Webex Teams does not properly sanitize input. An attacker could exploit the vulnerability by sending a user a malicious link and persuading the user to follow the link. A successful exploit could allow the malicious user to execute arbitrary code on the user's system. Cisco Bug IDs: CSCvh66250.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

cisco webex_teams -

Vendor Advisories

A vulnerability in Cisco Webex Teams could allow an unauthenticated, remote attacker to execute arbitrary code on the user’s device, possibly with elevated privileges The vulnerability occurs because Cisco Webex Teams does not properly sanitize input An attacker could exploit the vulnerability by sending a user a malicious link and persuading t ...