virus logo FortiClient Vulnerability

Security Vulnerabilities fixed in Webex Teams Advisory: XNmcSGTU

description-logoDescription

A vulnerability in Cisco Webex Teams could allow an attacker to execute arbitrary code on an affected system. The vulnerability is due to insufficient validation of values within Webex recording files formatted as either Advanced Recording Format (ARF) or Webex Recording Format (WRF). An attacker could exploit the vulnerability by sending a user a malicious ARF or WRF file through a link or email attachment and persuading the user to open the file. A successful exploit could allow the attacker to execute arbitrary code on the affected system with the privileges of the targeted user.

affected-products-logoAffected Applications

Webex Teams

CVE References

CVE-2021-1502 CVE-2021-1536

Other References

https://tools.cisco.com/security/center/home
ID 4279
Created Feb 23, 2022
Description
Updated		 Nov 07, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Cisco
Patch manual
Application Webex Teams