Cisco Webex_meetings_server
66 CVEs affecting Cisco Webex_meetings_server. Latest disclosed: 2017-11-30. Critical: 3, High: 14.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2017-12372 | Critical | 9.6 | 2017-11-30 | A "Cisco WebEx Network Recording Player Remote Code Execution Vulnerability" exists in Cisco WebEx Network Recording Player for Advanced Recording Format (ARF)… |
CVE-2017-12368 | Critical | 9.6 | 2017-11-30 | A "Cisco WebEx Network Recording Player Remote Code Execution Vulnerability" exists in Cisco WebEx Network Recording Player for Advanced Recording Format (ARF)… |
CVE-2017-12367 | Critical | 9.6 | 2017-11-30 | A "Cisco WebEx Network Recording Player Denial of Service Vulnerability" exists in Cisco WebEx Network Recording Player for Advanced Recording Format (ARF) and… |
CVE-2017-6753 | High | 8.8 | 2017-07-25 | A vulnerability in Cisco WebEx browser extensions for Google Chrome and Mozilla Firefox could allow an unauthenticated, remote attacker to execute arbitrary co… |
CVE-2017-3823 | High | 8.8 | 2017-02-01 | An issue was discovered in the Cisco WebEx Extension before 1.0.7 on Google Chrome, the ActiveTouch General Plugin Container before 106 on Mozilla Firefox, the… |
CVE-2017-3794 | High | 8.8 | 2017-01-26 | A vulnerability in Cisco WebEx Meetings Server could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack against an… |
CVE-2016-1448 | High | 8.8 | 2016-07-17 | Cross-site request forgery (CSRF) vulnerability in Cisco WebEx Meetings Server 2.7 allows remote attackers to hijack the authentication of arbitrary users, aka… |
CVE-2016-1446 | High | 8.8 | 2016-07-15 | SQL injection vulnerability in Cisco WebEx Meetings Server 2.6 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka… |
CVE-2017-12293 | High | 8.6 | 2017-10-19 | A vulnerability in Cisco WebEx Meetings Server could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability… |
CVE-2016-1482 | High | 8.1 | 2016-09-17 | Cisco WebEx Meetings Server 2.6 allows remote attackers to execute arbitrary commands by injecting these commands into an application script, aka Bug ID CSCuy8… |
CVE-2017-6651 | High | 7.5 | 2017-05-16 | A vulnerability in Cisco WebEx Meetings Server could allow unauthenticated, remote attackers to gain information that could allow them to access scheduled cust… |
CVE-2016-1483 | High | 7.5 | 2016-09-19 | Cisco WebEx Meetings Server 2.6 allows remote attackers to cause a denial of service (CPU consumption) by repeatedly accessing the account-validation component… |
CVE-2016-1484 | High | 7.5 | 2016-08-23 | Cisco WebEx Meetings Server 2.6 allows remote attackers to bypass intended access restrictions and obtain sensitive application information via unspecified vec… |
CVE-2016-1450 | High | 7.5 | 2016-07-15 | Cisco WebEx Meetings Server 2.6 allows remote authenticated users to conduct command-injection attacks via vectors related to an upload's file type, aka Bug ID… |
CVE-2016-1389 | High | 7.4 | 2016-04-28 | Open redirect vulnerability in Cisco WebEx Meetings Server (CWMS) 2.6 allows remote attackers to redirect users to arbitrary web sites and conduct phishing att… |
CVE-2014-0691 | High | 7.3 | 2017-10-24 | Cisco WebEx Meetings Server before 1.1 uses meeting IDs with insufficient entropy, which makes it easier for remote attackers to bypass authentication and join… |
CVE-2017-3796 | High | 7.2 | 2017-01-26 | A vulnerability in Cisco WebEx Meetings Server could allow an authenticated, remote attacker to execute predetermined shell commands on other hosts. More Infor… |
CVE-2017-12359 | Medium | 6.5 | 2017-11-30 | A Buffer Overflow vulnerability in Cisco WebEx Network Recording Player for Advanced Recording Format (.arf) files could allow an attacker to execute arbitrary… |
CVE-2017-3880 | Medium | 6.5 | 2017-03-17 | An Authentication Bypass vulnerability in Cisco WebEx Meetings Server could allow an unauthenticated, remote attacker to access limited meeting information on… |
CVE-2017-3811 | Medium | 6.5 | 2017-03-17 | An XML External Entity vulnerability in Cisco WebEx Meetings Server could allow an authenticated, remote attacker to have read access to part of the informatio… |