A vulnerability in the media engine component of Cisco Webex Meetings Client for Windows, Cisco Webex Meetings Desktop App for Windows, and Cisco Webex Teams for Windows could allow an authenticated, local attacker to gain access to sensitive information. The vulnerability is due to unsafe logging of authentication requests by the affected software. An attacker could exploit this vulnerability by reading log files that are stored in the application directory. A successful exploit could allow the attacker to gain access to sensitive information, which could be used in further attacks.
History

Thu, 14 Nov 2024 08:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2020-09-04T02:25:31.311031Z

Updated: 2024-11-13T18:08:50.922Z

Reserved: 2019-12-12T00:00:00

Link: CVE-2020-3541

cve-icon Vulnrichment

Updated: 2024-08-04T07:37:55.032Z

cve-icon NVD

Status : Modified

Published: 2020-09-04T03:15:10.857

Modified: 2024-11-21T05:31:16.600

Link: CVE-2020-3541

cve-icon Redhat

No data.