CVE-2019-1623

Name of the Vulnerable Software and Affected Versions Cisco Meeting Server (affected versions not specified)

Description A vulnerability in the CLI configuration shell of Cisco Meeting Server could allow an authenticated, local attacker to inject arbitrary commands as the root user. The issue is due to insufficient input validation during the execution of a vulnerable CLI command. An attacker with administrator-level credentials could exploit this by injecting crafted arguments during command execution, potentially allowing arbitrary code execution as root on an affected product.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.