CVE-2017-12360Cisco Webex Network Recording Player vulnerability

CWE-3994 documents4 sources
Severity
4.3MEDIUMNVD
EPSS
0.3%
top 47.09%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco Webex Network Recording PlayerCisco Webex Meeting Center
Timeline
PublishedNov 30
Latest updateMay 13

Description

A vulnerability in Cisco WebEx Network Recording Player for WebEx Recording Format (WRF) files could allow an attacker to cause a denial of service (DoS) condition. An attacker could exploit this vulnerability by providing a user with a malicious WRF file via email or URL and convincing the user to open the file. A successful exploit could cause an affected player to crash, resulting in a DoS condition. This vulnerability affects Cisco WebEx Business Suite meeting sites, Cisco WebEx Meetings sit

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:LExploitability: 2.8 | Impact: 1.4

Affected Packages2 packages

CVEListV5cisco/cisco_webex_network_recording_playerCisco WebEx Network Recording Player
NVDcisco/webex_meeting_center4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-mc3f-xxmw-v7w9: A vulnerability in Cisco WebEx Network Recording Player for WebEx Recording Format (WRF) files could allow an attacker to cause a denial of service (D2022-05-13
CVEList
CVE-2017-12360: A vulnerability in Cisco WebEx Network Recording Player for WebEx Recording Format (WRF) files could allow an attacker to cause a denial of service (D2017-11-30

📋Vendor Advisories

1
Cisco
Cisco WebEx Network Recording Player Denial of Service Vulnerability2017-11-30
CVE-2017-12360 — Cisco vulnerability | cvebase