KLA12054
Multiple vulnerabilities in Cisco Jabber

Обновлено: 04/02/2021
Дата обнаружения
21/02/2018
Уровень угрозы
Warning
Описание

Multiple vulnerabilities were found in Cisco Jabber. Malicious users can exploit these vulnerabilities to perform cross-site scripting attack, execute arbitrary code.

Below is a complete list of vulnerabilities:

  1. A cross-site scripting vulnerability in Cisco Jabber Client Framework (JCF) can be exploited remotely to perform cross-site scripting attack.
  2. A cross-site scripting vulnerability in Cisco Jabber Client Framework (JCF) can be exploited remotely to perform cross-site scripting attack and execute arbitrary code.
Пораженные продукты

Cisco Jabber 11.9 and earlier

Решение

Update to the latest version
Download Cisco Jabber

Первичный источник обнаружения
Cisco Jabber Client Framework for Windows and Mac Cross-Site Scripting Vulnerability
Cisco Jabber Client Framework for Windows and Mac Cross-Site Scripting Vulnerability
Оказываемое влияние
?
ACE 
[?]

XSS/CSS 
[?]
Связанные продукты
Cisco Jabber
CVE-IDS
CVE-2018-02013.5Warning
CVE-2018-01994.3Warning
Узнай статистику распространения уязвимостей в твоем регионе