Vulnerabilities > Cisco > Webex Business Suite 33 > 33.4.3

DATE CVE VULNERABILITY TITLE RISK
2018-10-05 CVE-2018-15436 Cross-site Scripting vulnerability in Cisco products
A vulnerability in the web-based management interface of Cisco Webex Events Center, Cisco Webex Meeting Center, Cisco Webex Support Center, and Cisco Webex Training Center could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of the affected service.
network
low complexity
cisco CWE-79
6.1
6.1
2018-10-05 CVE-2018-15418 Integer Underflow (Wrap or Wraparound) vulnerability in Cisco products
A vulnerability in the Cisco Webex Network Recording Player for Microsoft Windows and the Cisco Webex Player for Microsoft Windows could allow an attacker to execute arbitrary code on an affected system.
local
low complexity
cisco CWE-191
7.8
7.8
2018-10-05 CVE-2018-15410 Improper Input Validation vulnerability in Cisco products
A vulnerability in the Cisco Webex Network Recording Player for Microsoft Windows and the Cisco Webex Player for Microsoft Windows could allow an attacker to execute arbitrary code on an affected system.
local
low complexity
cisco CWE-20
7.8
7.8