Vulnerabilities > Cisco > Meeting Server > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-11-01 CVE-2023-20255 Unspecified vulnerability in Cisco Meeting Server
A vulnerability in an API of the Web Bridge feature of Cisco Meeting Server could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition.
network
low complexity
cisco
5.3
2021-06-16 CVE-2021-1524 Unspecified vulnerability in Cisco Meeting Server 3.1.0
A vulnerability in the API of Cisco Meeting Server could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.
network
low complexity
cisco
6.5
2020-07-16 CVE-2020-3197 Improper Authentication vulnerability in Cisco Meeting Server
A vulnerability in the API subsystem of Cisco Meetings App could allow an unauthenticated, remote attacker to retain and reuse the Traversal Using Relay NAT (TURN) server credentials that are configured in an affected system.
network
low complexity
cisco CWE-287
5.3
2020-02-19 CVE-2020-3160 Improper Input Validation vulnerability in Cisco Meeting Server
A vulnerability in the Extensible Messaging and Presence Protocol (XMPP) feature of Cisco Meeting Server software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition for users of XMPP conferencing applications.
network
low complexity
cisco CWE-20
5.3
2019-06-20 CVE-2019-1623 OS Command Injection vulnerability in Cisco Meeting Server
A vulnerability in the CLI configuration shell of Cisco Meeting Server could allow an authenticated, local attacker to inject arbitrary commands as the root user.
local
low complexity
cisco CWE-78
6.7
2019-04-18 CVE-2019-1794 Uncontrolled Search Path Element vulnerability in Cisco Meeting Server 2.2
A vulnerability in the search path processing of Cisco Directory Connector could allow an authenticated, local attacker to load a binary of their choosing.
local
low complexity
cisco CWE-427
5.1
2019-02-07 CVE-2019-1678 Improper Input Validation vulnerability in Cisco Meeting Server 2.3.6
A vulnerability in Cisco Meeting Server could allow an authenticated, remote attacker to cause a partial denial of service (DoS) to Cisco Meetings application users who are paired with a Session Initiation Protocol (SIP) endpoint.
network
low complexity
cisco CWE-20
4.3
2018-06-21 CVE-2018-0371 Improper Input Validation vulnerability in Cisco Meeting Server 2.2.5
A vulnerability in the Web Admin Interface of Cisco Meeting Server could allow an authenticated, remote attacker to cause a denial of service (DoS) condition.
network
low complexity
cisco CWE-20
6.5
2018-06-21 CVE-2018-0359 Session Fixation vulnerability in Cisco Meeting Server 2.3.0
A vulnerability in the session identification management functionality of the web-based management interface for Cisco Meeting Server could allow an unauthenticated, local attacker to hijack a valid user session identifier, aka Session Fixation.
local
low complexity
cisco CWE-384
5.5
2017-11-30 CVE-2017-12362 Unspecified vulnerability in Cisco Meeting Server
A vulnerability in Cisco Meeting Server versions prior to 2.2.2 could allow an authenticated, remote attacker to cause the system to reload, resulting in a denial of service (DoS) condition.
network
low complexity
cisco
6.5