Vulnerabilities > Cisco > Webex Meetings
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-11-26 | CVE-2019-16001 | Uncontrolled Search Path Element vulnerability in Cisco Webex Meetings and Webex Teams A vulnerability in the loading mechanism of specific dynamic link libraries in Cisco Webex Teams for Windows could allow an authenticated, local attacker to perform a DLL hijacking attack. | 5.3 |
| 2019-11-26 | CVE-2019-15960 | Unspecified vulnerability in Cisco Webex Meetings A vulnerability in the Webex Network Recording Admin page of Cisco Webex Meetings could allow an authenticated, remote attacker to elevate privileges in the context of the affected page. | 5.4 |
| 2019-08-21 | CVE-2019-1948 | Improper Certificate Validation vulnerability in Cisco Webex Meetings 11.3/39.5 A vulnerability in Cisco Webex Meetings Mobile (iOS) could allow an unauthenticated, remote attacker to gain unauthorized read access to sensitive data by using an invalid Secure Sockets Layer (SSL) certificate. | 5.9 |
| 2019-02-28 | CVE-2019-1674 | OS Command Injection vulnerability in Cisco products A vulnerability in the update service of Cisco Webex Meetings Desktop App and Cisco Webex Productivity Tools for Windows could allow an authenticated, local attacker to execute arbitrary commands as a privileged user. | 8.8 |
| 2019-02-07 | CVE-2019-1677 | Cross-site Scripting vulnerability in Cisco Webex Meetings A vulnerability in Cisco Webex Meetings for Android could allow an unauthenticated, local attacker to perform a cross-site scripting attack against the application. | 4.6 |
| 2018-07-18 | CVE-2018-0390 | Cross-site Scripting vulnerability in Cisco Webex Meetings 2.0 A vulnerability in the web framework of Cisco Webex could allow an unauthenticated, remote attacker to conduct a Document Object Model-based (DOM-based) cross-site scripting (XSS) attack against the user of the web interface of an affected system. | 6.1 |
| 2018-06-07 | CVE-2018-0357 | Cross-site Scripting vulnerability in Cisco Webex Meetings 1.3.5 A vulnerability in the web framework of Cisco WebEx could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against the user of the web interface of an affected system. | 6.1 |
| 2018-06-07 | CVE-2018-0356 | Cross-site Scripting vulnerability in Cisco Webex Meetings T32 A vulnerability in the web framework of Cisco WebEx could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against the user of the web interface of an affected system. | 6.1 |
| 2018-05-02 | CVE-2018-0264 | Improper Input Validation vulnerability in Cisco products A vulnerability in the Cisco WebEx Network Recording Player for Advanced Recording Format (ARF) files could allow an unauthenticated, remote attacker to execute arbitrary code on the system of a targeted user. | 9.6 |
| 2018-04-19 | CVE-2018-0112 | Improper Input Validation vulnerability in Cisco products A vulnerability in Cisco WebEx Business Suite clients, Cisco WebEx Meetings, and Cisco WebEx Meetings Server could allow an authenticated, remote attacker to execute arbitrary code on a targeted system. | 9.0 |