Cisco Meeting_server

31 CVEs affecting Cisco Meeting_server. Latest disclosed: 2023-11-01. Critical: 4, High: 9.

Top CVEs affecting Cisco Meeting_server
CVESeverityScorePublishedSummary
CVE-2016-6448Critical9.82016-11-03A vulnerability in the Session Description Protocol (SDP) parser of Cisco Meeting Server could allow an unauthenticated, remote attacker to execute arbitrary c…
CVE-2016-6447Critical9.82016-11-03A vulnerability in Cisco Meeting Server and Meeting App could allow an unauthenticated, remote attacker to execute arbitrary code on an affected system. This v…
CVE-2017-12249Critical9.12017-09-13A vulnerability in the Traversal Using Relay NAT (TURN) server included with Cisco Meeting Server (CMS) could allow an authenticated, remote attacker to gain u…
CVE-2016-6445Critical9.12016-10-27A vulnerability in the Extensible Messaging and Presence Protocol (XMPP) service of the Cisco Meeting Server (CMS) before 2.0.6 and Acano Server before 1.8.18…
CVE-2018-0439High8.82018-10-05A vulnerability in the web-based management interface of Cisco Meeting Server could allow an unauthenticated, remote attacker to conduct a cross-site request f…
CVE-2016-6444High8.82016-10-27A vulnerability in Cisco Meeting Server could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack against a Web Bri…
CVE-2018-0262High8.12018-05-02A vulnerability in Cisco Meeting Server could allow an unauthenticated, remote attacker to gain unauthorized access to components of, or sensitive information…
CVE-2017-3837High8.12017-02-22An HTTP Packet Processing vulnerability in the Web Bridge interface of the Cisco Meeting Server (CMS), formerly Acano Conferencing Server, could allow an authe…
CVE-2018-0280High7.52018-05-17A vulnerability in the Real-Time Transport Protocol (RTP) bitstream processing of the Cisco Meeting Server could allow an unauthenticated, remote attacker to c…
CVE-2017-6763High7.52017-08-07A vulnerability in the implementation of the H.264 protocol in Cisco Meeting Server (CMS) 2.1.4 could allow an unauthenticated, remote attacker to cause a deni…
CVE-2017-3830High7.52017-02-22A vulnerability in an internal API of the Cisco Meeting Server (CMS) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) conditi…
CVE-2016-6446High7.52016-10-27A vulnerability in Web Bridge for Cisco Meeting Server could allow an unauthenticated, remote attacker to retrieve memory from a connected server. More Informa…
CVE-2018-0263High7.42018-06-07A vulnerability in Cisco Meeting Server (CMS) could allow an unauthenticated, adjacent attacker to access services running on internal device interfaces of an…
CVE-2019-1676Medium6.82019-02-08A vulnerability in the Session Initiation Protocol (SIP) call processing of Cisco Meeting Server (CMS) software could allow an unauthenticated, remote attacker…
CVE-2019-1623Medium6.72019-06-20A vulnerability in the CLI configuration shell of Cisco Meeting Server could allow an authenticated, local attacker to inject arbitrary commands as the root us…
CVE-2017-6794Medium6.72017-09-07A vulnerability in the CLI command-parsing code of Cisco Meeting Server could allow an authenticated, local attacker to perform command injection and escalate…
CVE-2018-0371Medium6.52018-06-21A vulnerability in the Web Admin Interface of Cisco Meeting Server could allow an authenticated, remote attacker to cause a denial of service (DoS) condition…
CVE-2017-12362Medium6.52017-11-30A vulnerability in Cisco Meeting Server versions prior to 2.2.2 could allow an authenticated, remote attacker to cause the system to reload, resulting in a den…
CVE-2017-12224Medium6.52017-09-07A vulnerability in the ability for guest users to join meetings via a hyperlink with Cisco Meeting Server could allow an authenticated, remote attacker to ente…
CVE-2016-1451Medium6.12016-07-15Cross-site scripting (XSS) vulnerability in the web-based management interface in Cisco Meeting Server (formerly Acano Conferencing Server) 1.7 through 1.9 all…