A vulnerability in the login authorization components of Cisco Webex Meetings could allow an authenticated, remote attacker to inject arbitrary Java code. This vulnerability is due to improper deserialization of Java code within login requests. An attacker could exploit this vulnerability by sending malicious login requests to the Cisco Webex Meetings service. A successful exploit could allow the attacker to inject arbitrary Java code and take arbitrary actions within the Cisco Webex Meetings application.
Metrics
Affected Vendors & Products
References
History
Wed, 06 Nov 2024 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: cisco
Published: 2022-04-06T18:13:18.345587Z
Updated: 2024-11-06T16:28:48.044Z
Reserved: 2021-11-02T00:00:00
Link: CVE-2022-20763
Vulnrichment
Updated: 2024-08-03T02:24:49.459Z
NVD
Status : Modified
Published: 2022-04-06T19:15:08.327
Modified: 2024-11-21T06:43:30.317
Link: CVE-2022-20763
Redhat
No data.