Vulnerabilities > Cisco > Jabber > 12.9.3

DATE CVE VULNERABILITY TITLE RISK
2020-12-11 CVE-2020-27133 Improper Privilege Management vulnerability in Cisco Jabber and Jabber for Mobile Platforms
Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system (OS) with elevated privileges or gain access to sensitive information.
network
low complexity
cisco CWE-269
critical
 9.9
9.9
2020-12-11 CVE-2020-27132 Improper Privilege Management vulnerability in Cisco Jabber and Jabber for Mobile Platforms
Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system (OS) with elevated privileges or gain access to sensitive information.
network
low complexity
cisco CWE-269
critical
 9.9
9.9
2020-12-11 CVE-2020-27127 Improper Privilege Management vulnerability in Cisco Jabber and Jabber for Mobile Platforms
Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system (OS) with elevated privileges or gain access to sensitive information.
network
low complexity
cisco CWE-269
critical
 9.9
9.9
2020-09-04 CVE-2020-3537 Information Exposure vulnerability in Cisco Jabber
A vulnerability in Cisco Jabber for Windows software could allow an authenticated, remote attacker to gain access to sensitive information.
network
low complexity
cisco CWE-200
5.7
5.7
2020-09-04 CVE-2020-3498 Improper Input Validation vulnerability in Cisco Jabber
A vulnerability in Cisco Jabber software could allow an authenticated, remote attacker to gain access to sensitive information.
network
low complexity
cisco CWE-20
6.5
6.5
2020-09-04 CVE-2020-3495 Improper Input Validation vulnerability in Cisco Jabber
A vulnerability in Cisco Jabber for Windows could allow an authenticated, remote attacker to execute arbitrary code.
network
low complexity
cisco CWE-20
8.8
8.8
2020-09-04 CVE-2020-3430 OS Command Injection vulnerability in Cisco Jabber
A vulnerability in the application protocol handling features of Cisco Jabber for Windows could allow an unauthenticated, remote attacker to execute arbitrary commands.
network
low complexity
cisco CWE-78
8.8
8.8