CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-1525

A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to redirect users to a malicious file. This vulnerability is due to improper validation of URL paths in the application interface. An attacker could exploit this vulnerability by persuading a user to follow a specially crafted URL that is designed to cause Cisco Webex Meetings to include a remote file in the web UI. A successful exploit could allow the attacker to cause the application to offer a remote file to a user, which could allow the attacker to conduct further phishing or spoofing attacks.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 40.7%

CVSS Severity

CVSS v3 Score 4.7

CVSS v2 Score 5.8

References

Products affected by CVE-2021-1525

Cisco » Webex Meetings Online » Version: 41.3.5

cpe:2.3:a:cisco:webex_meetings_online:41.3.5
Cisco » Webex Meetings Server » Version: N/A

cpe:2.3:a:cisco:webex_meetings_server:-
Cisco » Webex Meetings Server » Version: 1.0

cpe:2.3:a:cisco:webex_meetings_server:1.0
Cisco » Webex Meetings Server » Version: 1.1

cpe:2.3:a:cisco:webex_meetings_server:1.1
Cisco » Webex Meetings Server » Version: 1.1_base

cpe:2.3:a:cisco:webex_meetings_server:1.1_base
Cisco » Webex Meetings Server » Version: 1.5

cpe:2.3:a:cisco:webex_meetings_server:1.5
Cisco » Webex Meetings Server » Version: 1.5(.1.131)

cpe:2.3:a:cisco:webex_meetings_server:1.5(.1.131)
Cisco » Webex Meetings Server » Version: 1.5(.1.6)

cpe:2.3:a:cisco:webex_meetings_server:1.5(.1.6)
Cisco » Webex Meetings Server » Version: 1.5.1.131

cpe:2.3:a:cisco:webex_meetings_server:1.5.1.131
Cisco » Webex Meetings Server » Version: 1.5.1.6

cpe:2.3:a:cisco:webex_meetings_server:1.5.1.6
Cisco » Webex Meetings Server » Version: 1.5_base

cpe:2.3:a:cisco:webex_meetings_server:1.5_base
Cisco » Webex Meetings Server » Version: 2.0

cpe:2.3:a:cisco:webex_meetings_server:2.0
Cisco » Webex Meetings Server » Version: 2.0.1.107

cpe:2.3:a:cisco:webex_meetings_server:2.0.1.107
Cisco » Webex Meetings Server » Version: 2.0_base

cpe:2.3:a:cisco:webex_meetings_server:2.0_base
Cisco » Webex Meetings Server » Version: 2.0_mr2

cpe:2.3:a:cisco:webex_meetings_server:2.0_mr2
Cisco » Webex Meetings Server » Version: 2.0_mr3

cpe:2.3:a:cisco:webex_meetings_server:2.0_mr3
Cisco » Webex Meetings Server » Version: 2.0_mr4

cpe:2.3:a:cisco:webex_meetings_server:2.0_mr4
Cisco » Webex Meetings Server » Version: 2.0_mr5

cpe:2.3:a:cisco:webex_meetings_server:2.0_mr5
Cisco » Webex Meetings Server » Version: 2.0_mr6

cpe:2.3:a:cisco:webex_meetings_server:2.0_mr6
Cisco » Webex Meetings Server » Version: 2.0_mr7

cpe:2.3:a:cisco:webex_meetings_server:2.0_mr7
Cisco » Webex Meetings Server » Version: 2.0_mr8

cpe:2.3:a:cisco:webex_meetings_server:2.0_mr8
Cisco » Webex Meetings Server » Version: 2.0_mr9

cpe:2.3:a:cisco:webex_meetings_server:2.0_mr9
Cisco » Webex Meetings Server » Version: 2.5

cpe:2.3:a:cisco:webex_meetings_server:2.5
Cisco » Webex Meetings Server » Version: 2.5(1)

cpe:2.3:a:cisco:webex_meetings_server:2.5(1)
Cisco » Webex Meetings Server » Version: 2.5.0.997

cpe:2.3:a:cisco:webex_meetings_server:2.5.0.997
Cisco » Webex Meetings Server » Version: 2.5.1.29

cpe:2.3:a:cisco:webex_meetings_server:2.5.1.29
Cisco » Webex Meetings Server » Version: 2.5.1.5

cpe:2.3:a:cisco:webex_meetings_server:2.5.1.5
Cisco » Webex Meetings Server » Version: 2.5_base

cpe:2.3:a:cisco:webex_meetings_server:2.5_base
Cisco » Webex Meetings Server » Version: 2.5_mr1

cpe:2.3:a:cisco:webex_meetings_server:2.5_mr1
Cisco » Webex Meetings Server » Version: 2.5_mr2

cpe:2.3:a:cisco:webex_meetings_server:2.5_mr2
Cisco » Webex Meetings Server » Version: 2.5_mr3

cpe:2.3:a:cisco:webex_meetings_server:2.5_mr3
Cisco » Webex Meetings Server » Version: 2.5_mr4

cpe:2.3:a:cisco:webex_meetings_server:2.5_mr4
Cisco » Webex Meetings Server » Version: 2.5_mr5

cpe:2.3:a:cisco:webex_meetings_server:2.5_mr5
Cisco » Webex Meetings Server » Version: 2.5_mr6

cpe:2.3:a:cisco:webex_meetings_server:2.5_mr6
Cisco » Webex Meetings Server » Version: 2.6

cpe:2.3:a:cisco:webex_meetings_server:2.6
Cisco » Webex Meetings Server » Version: 2.6.0

cpe:2.3:a:cisco:webex_meetings_server:2.6.0
Cisco » Webex Meetings Server » Version: 2.6.0.8

cpe:2.3:a:cisco:webex_meetings_server:2.6.0.8
Cisco » Webex Meetings Server » Version: 2.6.1.39

cpe:2.3:a:cisco:webex_meetings_server:2.6.1.39
Cisco » Webex Meetings Server » Version: 2.6_base

cpe:2.3:a:cisco:webex_meetings_server:2.6_base
Cisco » Webex Meetings Server » Version: 2.6_mr1

cpe:2.3:a:cisco:webex_meetings_server:2.6_mr1
Cisco » Webex Meetings Server » Version: 2.6_mr2

cpe:2.3:a:cisco:webex_meetings_server:2.6_mr2
Cisco » Webex Meetings Server » Version: 2.6_mr3

cpe:2.3:a:cisco:webex_meetings_server:2.6_mr3
Cisco » Webex Meetings Server » Version: 2.7

cpe:2.3:a:cisco:webex_meetings_server:2.7
Cisco » Webex Meetings Server » Version: 2.7.0

cpe:2.3:a:cisco:webex_meetings_server:2.7.0
Cisco » Webex Meetings Server » Version: 2.7.1

cpe:2.3:a:cisco:webex_meetings_server:2.7.1
Cisco » Webex Meetings Server » Version: 2.7_base

cpe:2.3:a:cisco:webex_meetings_server:2.7_base
Cisco » Webex Meetings Server » Version: 2.7_mr1

cpe:2.3:a:cisco:webex_meetings_server:2.7_mr1
Cisco » Webex Meetings Server » Version: 2.7_mr2

cpe:2.3:a:cisco:webex_meetings_server:2.7_mr2
Cisco » Webex Meetings Server » Version: 2.8

cpe:2.3:a:cisco:webex_meetings_server:2.8
Cisco » Webex Meetings Server » Version: 2.8(1)

cpe:2.3:a:cisco:webex_meetings_server:2.8(1)
Cisco » Webex Meetings Server » Version: 2.8.1.1023

cpe:2.3:a:cisco:webex_meetings_server:2.8.1.1023
Cisco » Webex Meetings Server » Version: 2.8.1.17

cpe:2.3:a:cisco:webex_meetings_server:2.8.1.17
Cisco » Webex Meetings Server » Version: 3.0

cpe:2.3:a:cisco:webex_meetings_server:3.0
Cisco » Webex Meetings Server » Version: 4.0

cpe:2.3:a:cisco:webex_meetings_server:4.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-1525

Products

Pricing

Contact Us