CVE-2019-15960

Name of the Vulnerable Software and Affected Versions Cisco Webex Meetings (affected versions not specified)

Description The issue is related to insufficient access control validation, allowing an authenticated, remote attacker to elevate privileges in the context of the affected Webex Network Recording Admin page. To exploit this, the attacker must be logged in as a low-level administrator and submit a crafted URL request to gain privileged access. A successful exploit could allow the attacker to view or delete recordings they would not normally be able to access.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.