Cisco Webex Video Mesh 2020.04.16.2176m.2

CPE Details

Cisco Webex Video Mesh 2020.04.16.2176m.2
cisco
webex_video_mesh
2020.04.16.2176m.2
2021-11-04
18h03 +00:00
2021-11-04
18h57 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:cisco:webex_video_mesh:2020.04.16.2176m.2:*:*:*:*:*:*:*

Informations

Vendor

cisco

Product

webex_video_mesh

Version

2020.04.16.2176m.2

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2021-1500 2021-11-04 15h40 +00:00 A vulnerability in the web-based management interface of Cisco Webex Video Mesh could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. This vulnerability is due to improper input validation of the URL parameters in an HTTP request. An attacker could exploit this vulnerability by persuading a user to click a crafted link. A successful exploit could allow the attacker to redirect a user to a malicious website. Attackers may use this type of vulnerability, known as an open redirect attack, as part of a phishing attack to persuade users to unknowingly visit malicious sites.
6.1
Medium
CVE-2021-40115 2021-11-04 15h35 +00:00 A vulnerability in Cisco Webex Video Mesh could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input by the web-based management interface. An attacker could exploit this vulnerability by persuading a user to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the interface or access sensitive, browser-based information.
6.1
Medium