Cisco Webex Business Suite 31 vulnerabilities
6 known vulnerabilities affecting cisco/webex_business_suite_31.
Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH3MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2018-15418HIGHCVSS 7.8fixed in 31.23.02018-10-05
CVE-2018-15418 [HIGH] CWE-20 CVE-2018-15418: A vulnerability in the Cisco Webex Network Recording Player for Microsoft Windows and the Cisco Webe
A vulnerability in the Cisco Webex Network Recording Player for Microsoft Windows and the Cisco Webex Player for Microsoft Windows could allow an attacker to execute arbitrary code on an affected system. The vulnerability exist because the affected software improperly validates Advanced Recording Format (ARF) and Webex Recording Format (WRF) files. An
nvd
CVE-2018-15409HIGHCVSS 7.8fixed in 31.23.42018-10-05
CVE-2018-15409 [HIGH] CWE-20 CVE-2018-15409: A vulnerability in the Cisco Webex Network Recording Player for Microsoft Windows and the Cisco Webe
A vulnerability in the Cisco Webex Network Recording Player for Microsoft Windows and the Cisco Webex Player for Microsoft Windows could allow an attacker to execute arbitrary code on an affected system. The vulnerability exist because the affected software improperly validates Advanced Recording Format (ARF) and Webex Recording Format (WRF) files. An
nvd
CVE-2018-15410HIGHCVSS 7.8fixed in 31.23.02018-10-05
CVE-2018-15410 [HIGH] CWE-20 CVE-2018-15410: A vulnerability in the Cisco Webex Network Recording Player for Microsoft Windows and the Cisco Webe
A vulnerability in the Cisco Webex Network Recording Player for Microsoft Windows and the Cisco Webex Player for Microsoft Windows could allow an attacker to execute arbitrary code on an affected system. The vulnerability exist because the affected software improperly validates Advanced Recording Format (ARF) and Webex Recording Format (WRF) files. An
nvd
CVE-2018-15436MEDIUMCVSS 6.1≥ 31.29.22018-10-05
CVE-2018-15436 [MEDIUM] CWE-79 CVE-2018-15436: A vulnerability in the web-based management interface of Cisco Webex Events Center, Cisco Webex Meet
A vulnerability in the web-based management interface of Cisco Webex Events Center, Cisco Webex Meeting Center, Cisco Webex Support Center, and Cisco Webex Training Center could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of the affected service. The vul
nvd
CVE-2018-0264CRITICALCVSS 9.6fixed in t32.122018-05-02
CVE-2018-0264 [CRITICAL] CWE-20 CVE-2018-0264: A vulnerability in the Cisco WebEx Network Recording Player for Advanced Recording Format (ARF) file
A vulnerability in the Cisco WebEx Network Recording Player for Advanced Recording Format (ARF) files could allow an unauthenticated, remote attacker to execute arbitrary code on the system of a targeted user. An attacker could exploit this vulnerability by sending the user a link or email attachment with a malicious ARF file and persuading the user
nvd
CVE-2018-0112CRITICALCVSS 9.0fixed in t31.23.22018-04-19
CVE-2018-0112 [CRITICAL] CWE-20 CVE-2018-0112: A vulnerability in Cisco WebEx Business Suite clients, Cisco WebEx Meetings, and Cisco WebEx Meeting
A vulnerability in Cisco WebEx Business Suite clients, Cisco WebEx Meetings, and Cisco WebEx Meetings Server could allow an authenticated, remote attacker to execute arbitrary code on a targeted system. The vulnerability is due to insufficient input validation by the Cisco WebEx clients. An attacker could exploit this vulnerability by providing meeti
nvd