First published: Fri Jun 04 2021(Updated: )
A vulnerability in logging mechanisms of Cisco Webex Meetings client software could allow an authenticated, local attacker to gain access to sensitive information. This vulnerability is due to unsafe logging of application actions. An attacker could exploit this vulnerability by logging onto the local system and accessing files containing the logged details. A successful exploit could allow the attacker to gain access to sensitive information, including meeting data and recorded meeting transcriptions.
Credit: ykramarz@cisco.com
Affected Software | Affected Version | How to fix |
---|---|---|
Cisco Webex Meetings | <41.4.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-1544 is a vulnerability in the logging mechanisms of Cisco Webex Meetings client software that could allow an authenticated, local attacker to gain access to sensitive information.
CVE-2021-1544 has a severity of 5.5/10, classified as medium.
The affected software of CVE-2021-1544 is Cisco Webex Meetings client software up to version 41.4.0.
An attacker can exploit CVE-2021-1544 by logging onto the local system and exploiting the unsafe logging of application actions.
You can find more information about CVE-2021-1544 on the Cisco Security Advisory page: [https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-8fpBnKOz]