Multiple vulnerabilities in Cisco Jabber

Описание

Multiple vulnerabilities were found in Cisco Jabber. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information.

Below is a complete list of vulnerabilities:

1. A code execution vulnerability in Cisco Jabber for Windows can be exploited remotely via special crafted message to execute arbitrary code.
2. A denial of service vulnerability in Cisco Jabber can be exploited remotely via special crafted message to cause denial of service.
3. A certificate validation vulnerability in Cisco Jabber can be exploited remotely via special crafted certificate to obtain sensitive information.
4. An information disclosure vulnerability in Cisco Jabber for Windows can be exploited remotely via special crafted message to obtain sensitive information.

Первичный источник обнаружения

• Cisco Jabber Desktop and Mobile Client Software Vulnerabilities
  

Связанные продукты

• Cisco-Jabber

Список CVE

• CVE-2021-1411
  critical
• CVE-2021-1418
  high
• CVE-2021-1471
  high
• CVE-2021-1417
  high
• CVE-2021-1469
  high

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com