KLA12054
Multiple vulnerabilities in Cisco Jabber

Updated: 02/04/2021
Detect date
?
02/21/2018
Severity
?
Warning
Description

Multiple vulnerabilities were found in Cisco Jabber. Malicious users can exploit these vulnerabilities to perform cross-site scripting attack, execute arbitrary code.

Below is a complete list of vulnerabilities:

  1. A cross-site scripting vulnerability in Cisco Jabber Client Framework (JCF) can be exploited remotely to perform cross-site scripting attack.
  2. A cross-site scripting vulnerability in Cisco Jabber Client Framework (JCF) can be exploited remotely to perform cross-site scripting attack and execute arbitrary code.
Affected products

Cisco Jabber 11.9 and earlier

Solution

Update to the latest version
Download Cisco Jabber

Original advisories

Cisco Jabber Client Framework for Windows and Mac Cross-Site Scripting Vulnerability
Cisco Jabber Client Framework for Windows and Mac Cross-Site Scripting Vulnerability

Impacts
?
ACE 
[?]

XSS/CSS 
[?]
Related products
Cisco Jabber
CVE-IDS
?
CVE-2018-02013.5Warning
CVE-2018-01994.3Warning
Find out the statistics of the vulnerabilities spreading in your region