CVE-2019-1948

Name of the Vulnerable Software and Affected Versions Cisco Webex Meetings Mobile (iOS) (affected versions not specified)

Description The issue is caused by insufficient Secure Sockets Layer (SSL) certificate validation, allowing an unauthenticated, remote attacker to gain unauthorized read access to sensitive data. An attacker could exploit this by supplying a crafted SSL certificate to an affected device, potentially conducting man-in-the-middle attacks to decrypt confidential information on user connections.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.