Published: 05/10/2018 Updated: 09/10/2019

CVSS v2 Base Score: 5.5 | Impact Score: 4.9 | Exploitability Score: 8

CVSS v3 Base Score: 8.7 | Impact Score: 5.8 | Exploitability Score: 2.3

VMScore: 490

Vector: AV:N/AC:L/Au:S/C:P/I:P/A:N

A vulnerability in Cisco Webex Teams, formerly Cisco Spark, could allow an authenticated, remote malicious user to view and modify data for an organization other than their own organization. The vulnerability exists because the affected software performs insufficient checks for associations between user accounts and organization accounts. An attacker who has administrator or compliance officer privileges for one organization account could exploit this vulnerability by using those privileges to view and modify data for another organization account. No customer data was impacted by this vulnerability.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco webex teams

A vulnerability in Cisco Webex Teams, formerly Cisco Spark, could allow an authenticated, remote attacker to view and modify data for an organization other than their own organization The vulnerability exists because the affected software performs insufficient checks for associations between user accounts and organization accounts An attacker who ...

CWE-269 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180905-webex-id-mod http://www.securityfocus.com/bid/105301 https://nvd.nist.gov https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180905-webex-id-mod

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2018-0436

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect