Vulnerabilities > Cisco > Webex Meetings Online > 1.3.43
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-09-23 | CVE-2020-3116 | Improper Input Validation vulnerability in Cisco Webex Meetings Online and Webex Meetings Server A vulnerability in the way Cisco Webex applications process Universal Communications Format (UCF) files could allow an attacker to cause a denial of service (DoS) condition. | 4.3 |
2020-08-17 | CVE-2020-3472 | Incorrect Authorization vulnerability in Cisco Webex Meetings Online A vulnerability in the contacts feature of Cisco Webex Meetings could allow an authenticated, remote attacker with a legitimate user account to access sensitive information. | 5.0 |
2020-08-17 | CVE-2020-3463 | Cross-site Scripting vulnerability in Cisco Webex Meetings Online A vulnerability in the web-based management interface of Cisco Webex Meetings could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of the affected service. | 6.1 |
2020-08-17 | CVE-2020-3413 | Incorrect Authorization vulnerability in Cisco Webex Meetings Online A vulnerability in the scheduled meeting template feature of Cisco Webex Meetings could allow an authenticated, remote attacker to delete a scheduled meeting template that belongs to another user in their organization. | 4.3 |
2020-08-17 | CVE-2020-3412 | Incorrect Authorization vulnerability in Cisco Webex Meetings Online A vulnerability in the scheduled meeting template feature of Cisco Webex Meetings could allow an authenticated, remote attacker to create a scheduled meeting template that would belong to another user in their organization. | 4.3 |
2020-04-15 | CVE-2020-3194 | Improper Input Validation vulnerability in Cisco products A vulnerability in Cisco Webex Network Recording Player for Microsoft Windows and Cisco Webex Player for Microsoft Windows could allow an attacker to execute arbitrary code on an affected system. | 9.3 |