CVE-2017-12224

Name of the Vulnerable Software and Affected Versions Cisco Meeting Server (affected versions not specified)

Description A vulnerability exists in the Cisco Meeting Server, related to guest users joining meetings via hyperlinks. This issue allows an authenticated, remote attacker to enter a meeting using a hyperlink URL, despite access being denied. The problem stems from the incorrect implementation of the configuration setting for guest access via hyperlinks. An attacker could exploit this by using a crafted hyperlink to connect to a meeting, requiring a valid hyperlink and encoded secret identifier.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.