Vulnerabilities > Cisco > Webex Meetings > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-21 | CVE-2021-34743 | Cross-Site Request Forgery (CSRF) vulnerability in Cisco Webex Meetings A vulnerability in the application integration feature of Cisco Webex Software could allow an unauthenticated, remote attacker to authorize an external application to integrate with and access a user's account without that user's express consent. | 7.1 |
| 2020-11-06 | CVE-2020-3604 | Out-of-bounds Write vulnerability in Cisco Webex Meetings Multiple vulnerabilities in Cisco Webex Network Recording Player for Windows and Cisco Webex Player for Windows could allow an attacker to execute arbitrary code on an affected system. | 7.8 |
| 2020-11-06 | CVE-2020-3603 | Out-of-bounds Write vulnerability in Cisco Webex Meetings and Webex Meetings Server Multiple vulnerabilities in Cisco Webex Network Recording Player for Windows and Cisco Webex Player for Windows could allow an attacker to execute arbitrary code on an affected system. | 7.8 |
| 2020-11-06 | CVE-2020-3588 | Path Traversal vulnerability in Cisco Webex Meetings A vulnerability in virtualization channel messaging in Cisco Webex Meetings Desktop App for Windows could allow a local attacker to execute arbitrary code on a targeted system. | 7.8 |
| 2020-11-06 | CVE-2020-3573 | Improper Initialization vulnerability in Cisco Webex Meetings and Webex Meetings Server Multiple vulnerabilities in Cisco Webex Network Recording Player for Windows and Cisco Webex Player for Windows could allow an attacker to execute arbitrary code on an affected system. | 7.8 |
| 2020-06-18 | CVE-2020-3263 | Improper Input Validation vulnerability in Cisco Webex Meetings 33.6.6/39.5.11 A vulnerability in Cisco Webex Meetings Desktop App could allow an unauthenticated, remote attacker to execute programs on an affected end-user system. | 7.6 |
| 2018-03-05 | CVE-2017-17428 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in multiple products Cavium Nitrox SSL, Nitrox V SSL, and TurboSSL software development kits (SDKs) allow remote attackers to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, aka a ROBOT attack. | 7.1 |