CVE-2021-1500

Name of the Vulnerable Software and Affected Versions Cisco Webex Video Mesh (affected versions not specified)

Description The issue is related to improper input validation of the URL parameters in an HTTP request, which could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. This is known as an open redirect attack and can be used as part of a phishing attack to persuade users to unknowingly visit malicious sites. An attacker could exploit this by persuading a user to click a crafted link.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.