URL Redirection Vulnerability in Cisco WebEx Meeting Center

URL Redirection Vulnerability in Cisco WebEx Meeting Center

CVE-2017-12297 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:P/A:N

A vulnerability in Cisco WebEx Meeting Center could allow an authenticated, remote attacker to initiate connections to arbitrary hosts, aka a "URL Redirection Vulnerability." The vulnerability is due to insufficient access control for HTTP traffic directed to the Cisco WebEx Meeting Center. An attacker could exploit this vulnerability by sending a malicious URL to the Cisco WebEx Meeting Center. An exploit could allow the attacker to connect to arbitrary hosts. Cisco Bug IDs: CSCvf63843.

Learn more about our Cis Benchmark Audit For Cisco.