CVE-2020-3440

Name of the Vulnerable Software and Affected Versions: Cisco Webex Meetings Desktop App for Windows (affected versions not specified)

Description: The issue is related to improper validation of URL parameters sent from a website to the application, allowing an unauthenticated, remote attacker to overwrite arbitrary files on an end-user system. An attacker could exploit this by persuading a user to follow a crafted URL, potentially corrupting or deleting critical system files. The vulnerability is due to errors in checking URL parameters.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.