CVE-2018-0436

Name of the Vulnerable Software and Affected Versions Cisco Webex Teams (affected versions not specified)

Description A vulnerability could allow an authenticated, remote attacker to view and modify data for an organization other than their own organization. The issue exists because the affected software performs insufficient checks for associations between user accounts and organization accounts. An attacker with administrator or compliance officer privileges for one organization account could exploit this by using those privileges to view and modify data for another organization account. No customer data was impacted by this issue.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.