Tom Wyckhuys

**Name of the Vulnerable Software and Affected Versions** Cisco Webex Meetings (affected versions not specified) **Description** The issue is related to improper input validation of the URL parameters in an HTTP request, allowing an unauthenticated, remote attacker to redirect a user to an untrusted web page, bypassing the warning mechanism. This can be exploited by persuading a user to click a crafted link, potentially leading to phishing attacks. The vulnerability is known as an open redirect attack, which could convince users to unknowingly visit malicious sites. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Cisco Webex Meetings and Cisco Webex Meetings Server (affected versions not specified) Description: The issue is related to a lack of protection against brute forcing of the host key in the reclaim host role feature. This could allow a remote attacker to take over the host role during a meeting by sending crafted requests to a vulnerable site. A successful exploit would require the attacker to have access to join a Webex meeting, including applicable meeting join links and passwords. Recommendations: As a temporary workaround, consider restricting access to the reclaim host role feature until a patch is available. Restrict access to the `host key` to minimize the risk of exploitation. Avoid using the `reclaim host role` feature in the affected Cisco Webex Meetings or Webex Meetings Server until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Palo Alto Networks GlobalProtect app versions prior to 5.0.10 Palo Alto Networks GlobalProtect app versions prior to 5.1.4 **Description** The issue is related to a missing certification validation in the GlobalProtect app when the pre-logon feature is enabled. This can disclose the pre-logon authentication cookie to a man-in-the-middle attacker on the same local area network segment with the ability to manipulate ARP or conduct ARP spoofing attacks. The attacker can access the GlobalProtect Server as allowed by configured Security rules for the 'pre-login' user, although this access may be limited compared to regular users. **Recommendations** For GlobalProtect app versions prior to 5.0.10, update to version 5.0.10 or later to resolve the issue. For GlobalProtect app versions prior to 5.1.4, update to version 5.1.4 or later to resolve the issue. As a temporary workaround, consider disabling the pre-logon feature until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Microsoft Outlook for Android (affected versions not specified) **Description** A spoofing issue exists in the way Microsoft Outlook for Android parses specifically crafted email messages. This can allow a remote attacker to perform cross-site scripting attacks using a specially crafted email message. The vulnerability is related to errors in the representation of information by the user interface. Exploitation of the vulnerability may enable an attacker to launch a script in the context of the current user. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.