Multiple vulnerabilities in Cisco Jabber

Descripción

Multiple vulnerabilities were found in Cisco Jabber. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, bypass security restrictions.

Below is a complete list of vulnerabilities:

1. A command injection vulnerability in Cisco Jabber can be exploited remotely to execute arbitrary code.
2. An unauthorized access vulnerability in Cisco Jabber can be exploited remotely to obtain sensitive information and bypass security restrictions.
3. An information disclosure vulnerability in Cisco Jabber can be exploited remotely via special crafted message to obtain sensitive information.
4. A program execution vulnerability in Cisco Jabber can be exploited remotely via special crafted XMPP message to execute arbitrary code.
5. A script injection vulnerability in Cisco Jabber can be exploited remotely via special crafted XMPP message to execute arbitrary code.

Notas informativas originales

• Cisco Jabber Desktop and Mobile Client Software Vulnerabilities

Explotación

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Productos relacionados

• Cisco-Jabber

Lista CVE

• CVE-2020-27133
  critical
• CVE-2020-27127
  critical
• CVE-2020-27132
  critical
• CVE-2020-26085
  critical
• CVE-2020-27134
  critical

Leer más

Conozca las estadísticas de las vulnerabilidades que se propagan en su región statistics.securelist.com