CVE-2020-3361

Name of the Vulnerable Software and Affected Versions Cisco Webex Meetings and Cisco Webex Meetings Server (affected versions not specified) Cisco Webex Meetings Desktop App (affected versions not specified)

Description The issue is related to improper handling of authentication tokens, which could allow an unauthenticated, remote attacker to gain unauthorized access to a vulnerable Webex site. An attacker could exploit this by sending crafted requests to a vulnerable site. If successful, the attacker could gain the privileges of another user within the affected Webex site. The vulnerability is also associated with deficiencies in authentication.

Recommendations For Cisco Webex Meetings and Cisco Webex Meetings Server, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Cisco Webex Meetings Desktop App, at the moment, there is no information about a newer version that contains a fix for this vulnerability.