Vulnerabilities > Cisco > Webex Productivity Tools > High

DATE CVE VULNERABILITY TITLE RISK
2019-02-28 CVE-2019-1674 OS Command Injection vulnerability in Cisco products
A vulnerability in the update service of Cisco Webex Meetings Desktop App and Cisco Webex Productivity Tools for Windows could allow an authenticated, local attacker to execute arbitrary commands as a privileged user.
network
low complexity
cisco CWE-78
8.8
2018-10-24 CVE-2018-15442 OS Command Injection vulnerability in Cisco Webex Meetings Desktop and Webex Productivity Tools
A vulnerability in the update service of Cisco Webex Meetings Desktop App for Windows could allow an authenticated, local attacker to execute arbitrary commands as a privileged user.
local
low complexity
cisco CWE-78
7.8
2016-04-28 CVE-2016-4349 Unspecified vulnerability in Cisco Webex Productivity Tools 2.40.5001.10012
Untrusted search path vulnerability in Cisco WebEx Productivity Tools 2.40.5001.10012 allows local users to gain privileges via a Trojan horse cryptsp.dll, dwmapi.dll, msimg32.dll, ntmarta.dll, propsys.dll, riched20.dll, rpcrtremote.dll, secur32.dll, sxs.dll, or uxtheme.dll file in the current working directory, aka Bug ID CSCuy56140.
local
low complexity
cisco
7.8