CVE-2020-3116 vulnerability in Cisco Products
Published on September 23, 2020
Cisco Webex Centers Denial of Service Vulnerability
A vulnerability in the way Cisco Webex applications process Universal Communications Format (UCF) files could allow an attacker to cause a denial of service (DoS) condition. The vulnerability is due to insufficient validation of UCF media files. An attacker could exploit this vulnerability by sending a user a malicious UCF file through a link or email attachment and persuading the user to open the file with the affected software on the local system. A successful exploit would cause the application to quit unexpectedly.
Weakness Type
Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
Products Associated with CVE-2020-3116
stack.watch emails you whenever new vulnerabilities are published in Cisco Webex Meetings Server or Cisco Webex Meetings Online. Just hit a watch button to start following.
Affected Versions
Cisco WebEx Event Center Version n/a is affected by CVE-2020-3116Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.