CVE-2021-1517

Name of the Vulnerable Software and Affected Versions Cisco Webex Meetings Server (affected versions not specified) Cisco Webex Meetings (affected versions not specified)

Description The issue is related to the multimedia viewer feature of the software, where unsafe handling of shared content allows an attacker to bypass security protections. This could be exploited by sharing a file through the multimedia viewer feature, potentially preventing warning dialogs from appearing before files are offered to other users. The attacker must be authenticated and act remotely to exploit this issue.

Recommendations For Cisco Webex Meetings Server, consider disabling the multimedia viewer feature until a patch is available. For Cisco Webex Meetings, restrict access to the multimedia viewer feature to minimize the risk of exploitation. As a temporary workaround, avoid sharing files through the multimedia viewer feature until the issue is resolved.