CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-3419

A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to join a Webex session without appearing on the participant list. This vulnerability is due to improper handling of authentication tokens by a vulnerable Webex site. An attacker could exploit this vulnerability by sending crafted requests to a vulnerable Cisco Webex Meetings or Cisco Webex Meetings Server site. A successful exploit requires the attacker to have access to join a Webex meeting, including applicable meeting join links and passwords. The attacker could then exploit this vulnerability to join meetings, without appearing in the participant list, while having full access to audio, video, chat, and screen sharing capabilities.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.5%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 6.4

References

Products affected by CVE-2020-3419

Cisco » Webex Meetings Server » Version: N/A

cpe:2.3:a:cisco:webex_meetings_server:-
Cisco » Webex Meetings Server » Version: 1.0

cpe:2.3:a:cisco:webex_meetings_server:1.0
Cisco » Webex Meetings Server » Version: 1.1

cpe:2.3:a:cisco:webex_meetings_server:1.1
Cisco » Webex Meetings Server » Version: 1.1_base

cpe:2.3:a:cisco:webex_meetings_server:1.1_base
Cisco » Webex Meetings Server » Version: 1.5

cpe:2.3:a:cisco:webex_meetings_server:1.5
Cisco » Webex Meetings Server » Version: 1.5(.1.131)

cpe:2.3:a:cisco:webex_meetings_server:1.5(.1.131)
Cisco » Webex Meetings Server » Version: 1.5(.1.6)

cpe:2.3:a:cisco:webex_meetings_server:1.5(.1.6)
Cisco » Webex Meetings Server » Version: 1.5.1.131

cpe:2.3:a:cisco:webex_meetings_server:1.5.1.131
Cisco » Webex Meetings Server » Version: 1.5.1.6

cpe:2.3:a:cisco:webex_meetings_server:1.5.1.6
Cisco » Webex Meetings Server » Version: 1.5_base

cpe:2.3:a:cisco:webex_meetings_server:1.5_base
Cisco » Webex Meetings Server » Version: 2.0

cpe:2.3:a:cisco:webex_meetings_server:2.0
Cisco » Webex Meetings Server » Version: 2.0.1.107

cpe:2.3:a:cisco:webex_meetings_server:2.0.1.107
Cisco » Webex Meetings Server » Version: 2.0_base

cpe:2.3:a:cisco:webex_meetings_server:2.0_base
Cisco » Webex Meetings Server » Version: 2.0_mr2

cpe:2.3:a:cisco:webex_meetings_server:2.0_mr2
Cisco » Webex Meetings Server » Version: 2.0_mr3

cpe:2.3:a:cisco:webex_meetings_server:2.0_mr3
Cisco » Webex Meetings Server » Version: 2.0_mr4

cpe:2.3:a:cisco:webex_meetings_server:2.0_mr4
Cisco » Webex Meetings Server » Version: 2.0_mr5

cpe:2.3:a:cisco:webex_meetings_server:2.0_mr5
Cisco » Webex Meetings Server » Version: 2.0_mr6

cpe:2.3:a:cisco:webex_meetings_server:2.0_mr6
Cisco » Webex Meetings Server » Version: 2.0_mr7

cpe:2.3:a:cisco:webex_meetings_server:2.0_mr7
Cisco » Webex Meetings Server » Version: 2.0_mr8

cpe:2.3:a:cisco:webex_meetings_server:2.0_mr8
Cisco » Webex Meetings Server » Version: 2.0_mr9

cpe:2.3:a:cisco:webex_meetings_server:2.0_mr9
Cisco » Webex Meetings Server » Version: 2.5

cpe:2.3:a:cisco:webex_meetings_server:2.5
Cisco » Webex Meetings Server » Version: 2.5(1)

cpe:2.3:a:cisco:webex_meetings_server:2.5(1)
Cisco » Webex Meetings Server » Version: 2.5.0.997

cpe:2.3:a:cisco:webex_meetings_server:2.5.0.997
Cisco » Webex Meetings Server » Version: 2.5.1.29

cpe:2.3:a:cisco:webex_meetings_server:2.5.1.29
Cisco » Webex Meetings Server » Version: 2.5.1.5

cpe:2.3:a:cisco:webex_meetings_server:2.5.1.5
Cisco » Webex Meetings Server » Version: 2.5_base

cpe:2.3:a:cisco:webex_meetings_server:2.5_base
Cisco » Webex Meetings Server » Version: 2.5_mr1

cpe:2.3:a:cisco:webex_meetings_server:2.5_mr1
Cisco » Webex Meetings Server » Version: 2.5_mr2

cpe:2.3:a:cisco:webex_meetings_server:2.5_mr2
Cisco » Webex Meetings Server » Version: 2.5_mr3

cpe:2.3:a:cisco:webex_meetings_server:2.5_mr3
Cisco » Webex Meetings Server » Version: 2.5_mr4

cpe:2.3:a:cisco:webex_meetings_server:2.5_mr4
Cisco » Webex Meetings Server » Version: 2.5_mr5

cpe:2.3:a:cisco:webex_meetings_server:2.5_mr5
Cisco » Webex Meetings Server » Version: 2.5_mr6

cpe:2.3:a:cisco:webex_meetings_server:2.5_mr6
Cisco » Webex Meetings Server » Version: 2.6

cpe:2.3:a:cisco:webex_meetings_server:2.6
Cisco » Webex Meetings Server » Version: 2.6.0

cpe:2.3:a:cisco:webex_meetings_server:2.6.0
Cisco » Webex Meetings Server » Version: 2.6.0.8

cpe:2.3:a:cisco:webex_meetings_server:2.6.0.8
Cisco » Webex Meetings Server » Version: 2.6.1.39

cpe:2.3:a:cisco:webex_meetings_server:2.6.1.39
Cisco » Webex Meetings Server » Version: 2.6_base

cpe:2.3:a:cisco:webex_meetings_server:2.6_base
Cisco » Webex Meetings Server » Version: 2.6_mr1

cpe:2.3:a:cisco:webex_meetings_server:2.6_mr1
Cisco » Webex Meetings Server » Version: 2.6_mr2

cpe:2.3:a:cisco:webex_meetings_server:2.6_mr2
Cisco » Webex Meetings Server » Version: 2.6_mr3

cpe:2.3:a:cisco:webex_meetings_server:2.6_mr3
Cisco » Webex Meetings Server » Version: 2.7

cpe:2.3:a:cisco:webex_meetings_server:2.7
Cisco » Webex Meetings Server » Version: 2.7.0

cpe:2.3:a:cisco:webex_meetings_server:2.7.0
Cisco » Webex Meetings Server » Version: 2.7.1

cpe:2.3:a:cisco:webex_meetings_server:2.7.1
Cisco » Webex Meetings Server » Version: 2.7_base

cpe:2.3:a:cisco:webex_meetings_server:2.7_base
Cisco » Webex Meetings Server » Version: 2.7_mr1

cpe:2.3:a:cisco:webex_meetings_server:2.7_mr1
Cisco » Webex Meetings Server » Version: 2.7_mr2

cpe:2.3:a:cisco:webex_meetings_server:2.7_mr2
Cisco » Webex Meetings Server » Version: 2.8

cpe:2.3:a:cisco:webex_meetings_server:2.8
Cisco » Webex Meetings Server » Version: 2.8(1)

cpe:2.3:a:cisco:webex_meetings_server:2.8(1)
Cisco » Webex Meetings Server » Version: 2.8.1.1023

cpe:2.3:a:cisco:webex_meetings_server:2.8.1.1023
Cisco » Webex Meetings Server » Version: 2.8.1.17

cpe:2.3:a:cisco:webex_meetings_server:2.8.1.17
Cisco » Webex Meetings Server » Version: 3.0

cpe:2.3:a:cisco:webex_meetings_server:3.0
Cisco » Webex Meetings Server » Version: 4.0

cpe:2.3:a:cisco:webex_meetings_server:4.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-3419

Products

Pricing

Contact Us