CVE-2020-3430

Name of the Vulnerable Software and Affected Versions: Cisco Jabber for Windows (affected versions not specified)

Description: A vulnerability in the application protocol handling features of Cisco Jabber for Windows could allow an unauthenticated, remote attacker to execute arbitrary commands. The issue is due to improper handling of input to the application protocol handlers. An attacker could exploit this by convincing a user to click a link within a message sent by email or other messaging platform, potentially allowing the execution of arbitrary commands on a targeted system with the privileges of the user account running the Cisco Jabber client software.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.