Cisco Webex_meeting_center
30 CVEs affecting Cisco Webex_meeting_center. Latest disclosed: 2017-11-30. Critical: 0, High: 4.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2017-6753 | High | 8.8 | 2017-07-25 | A vulnerability in Cisco WebEx browser extensions for Google Chrome and Mozilla Firefox could allow an unauthenticated, remote attacker to execute arbitrary co… |
CVE-2017-3823 | High | 8.8 | 2017-02-01 | An issue was discovered in the Cisco WebEx Extension before 1.0.7 on Google Chrome, the ActiveTouch General Plugin Container before 106 on Mozilla Firefox, the… |
CVE-2016-1410 | High | 7.5 | 2016-05-28 | Cisco WebEx Meeting Center Original Release Base allows remote attackers to obtain sensitive information about username validity by (1) attending or (2) hostin… |
CVE-2015-6360 | High | 7.5 | 2016-04-21 | The encryption-processing feature in Cisco libSRTP before 1.5.3 allows remote attackers to cause a denial of service via crafted fields in SRTP packets, aka Bu… |
CVE-2017-12359 | Medium | 6.5 | 2017-11-30 | A Buffer Overflow vulnerability in Cisco WebEx Network Recording Player for Advanced Recording Format (.arf) files could allow an attacker to execute arbitrary… |
CVE-2017-12366 | Medium | 6.1 | 2017-11-30 | A vulnerability in Cisco WebEx Meeting Center could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of… |
CVE-2017-12298 | Medium | 6.1 | 2017-10-19 | A vulnerability in Cisco WebEx Meeting Center could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of… |
CVE-2017-12286 | Medium | 5.5 | 2017-10-19 | A vulnerability in the web interface of Cisco Jabber could allow an authenticated, local attacker to retrieve user profile information from the affected softwa… |
CVE-2017-3799 | Medium | 5.4 | 2017-01-26 | A vulnerability in a URL parameter of Cisco WebEx Meeting Center could allow an unauthenticated, remote attacker to perform site redirection. More Information… |
CVE-2017-12297 | Medium | 5.0 | 2017-11-30 | A vulnerability in Cisco WebEx Meeting Center could allow an authenticated, remote attacker to initiate connections to arbitrary hosts, aka a "URL Redirection… |
CVE-2017-12365 | Medium | 4.3 | 2017-11-30 | A vulnerability in Cisco WebEx Event Center could allow an authenticated, remote attacker to view unlisted meeting information. The vulnerability is due to a d… |
CVE-2017-12360 | Medium | 4.3 | 2017-11-30 | A vulnerability in Cisco WebEx Network Recording Player for WebEx Recording Format (WRF) files could allow an attacker to cause a denial of service (DoS) condi… |
CVE-2015-4212 | | 2015-06-24 | Cisco WebEx Meeting Center allows remote attackers to obtain sensitive information via unspecified vectors, as demonstrated by discovering credentials, aka Bug… | |
CVE-2015-4208 | | 2015-06-24 | Cisco WebEx Meeting Center does not properly restrict the content of URLs in GET requests, which allows remote attackers to obtain sensitive information or con… | |
CVE-2015-4210 | | 2015-06-23 | Cross-site scripting (XSS) vulnerability in Cisco WebEx Meeting Center allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bu… | |
CVE-2015-4209 | | 2015-06-23 | Cisco WebEx Meeting Center does not properly determine authorization for reading a host calendar, which allows remote attackers to obtain sensitive information… | |
CVE-2015-4207 | | 2015-06-23 | Cisco WebEx Meeting Center places a meeting's access number in a URL, which allows remote attackers to obtain sensitive information and bypass intended attenda… | |
CVE-2015-4194 | | 2015-06-19 | The web-based administrative interface in Cisco WebEx Meeting Center provides different error messages for failed login attempts depending on whether the usern… | |
CVE-2015-0590 | | 2015-01-17 | Cisco WebEx Meeting Center allows remote attackers to activate disabled meeting attributes, and consequently obtain sensitive information, by providing crafted… | |
CVE-2015-0583 | | 2015-01-14 | Cisco WebEx Meeting Center does not properly restrict the content of URLs, which allows remote attackers to obtain sensitive information via vectors related to… |