CVE-2019-1954

Name of the Vulnerable Software and Affected Versions Cisco Webex Meetings Server Software (affected versions not specified)

Description A vulnerability in the web-based management interface could allow an unauthenticated, remote attacker to redirect a user to an undesired web page. The issue is due to improper input validation of the URL parameters in an HTTP request sent to an affected device. An attacker could exploit this by crafting an HTTP request to cause the web application to redirect the request to a specified malicious URL. A successful exploit could allow the attacker to redirect a user to a malicious website.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.