CVE-2020-3322 - OpenCVE

A vulnerability in Cisco Webex Network Recording Player and Cisco Webex Player for Microsoft Windows could allow an attacker to cause a process crash resulting in a Denial of service (DoS) condition for the player application on an affected system. The vulnerability exists due to insufficient validation of certain elements with a Webex recording stored in either the Advanced Recording Format (ARF) or the Webex Recording Format (WRF). An attacker could exploit this vulnerability by sending a user a malicious ARF or WRF file through a link or email attachment and persuading the user to open the file with the affected software on the local system. A successful exploit could allow the attacker to cause the Webex player application to crash when trying to view the malicious file.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction Required

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:M/Au:N/C:N/I:N/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Cisco	Webex Network Recording Player Webex Player

Configuration 1 [-]

OR	cpe:2.3:a:cisco:webex_network_recording_player:-:::::::*
	cpe:2.3:a:cisco:webex_player:-:::::windows::

No data.

References

Link	Providers
https://quickview.cloudapps.cisco.com/quickview/bug/CSCvs98269

History

No history.

MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2020-06-03T17:00:18.648979Z

Updated: 2024-09-17T00:05:26.834Z

Reserved: 2019-12-12T00:00:00

Link: CVE-2020-3322

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2020-06-03T17:15:25.997

Modified: 2021-10-19T20:07:08.287

Link: CVE-2020-3322

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "Cisco Webex Network Recording Player", "vendor": "Cisco", "versions": [{"lessThan": "3.0 MR3 Security Patch 2", "status": "affected", "version": "unspecified", "versionType": "custom"}, {"lessThan": "4.0 MR3", "status": "affected", "version": "unspecified", "versionType": "custom"}]}, {"product": "Cisco Webex Player for Microsoft Windows", "vendor": "Cisco", "versions": [{"lessThan": "3.0 MR3 Security Patch 2", "status": "affected", "version": "unspecified", "versionType": "custom"}, {"lessThan": "4.0 MR3", "status": "affected", "version": "unspecified", "versionType": "custom"}]}], "credits": [{"lang": "en", "value": "Cisco would like to thank Kexu Wang of Fortinet's FortiGuard Labs for reporting this vulnerability"}], "datePublic": "2020-06-03T00:00:00", "descriptions": [{"lang": "en", "value": "A vulnerability in Cisco Webex Network Recording Player and Cisco Webex Player for Microsoft Windows could allow an attacker to cause a process crash resulting in a Denial of service (DoS) condition for the player application on an affected system. The vulnerability exists due to insufficient validation of certain elements with a Webex recording stored in either the Advanced Recording Format (ARF) or the Webex Recording Format (WRF). An attacker could exploit this vulnerability by sending a user a malicious ARF or WRF file through a link or email attachment and persuading the user to open the file with the affected software on the local system. A successful exploit could allow the attacker to cause the Webex player application to crash when trying to view the malicious file."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 3.3, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", "version": "3.1"}}], "problemTypes": [{"descriptions": [{"cweId": "CWE-20", "description": "CWE-20 Improper Input Validation", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2020-06-03T17:00:18", "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco"}, "references": [{"name": "Cisco Webex Network Recording Player and Cisco Webex Player Denial of Service Vulnerability", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "https://quickview.cloudapps.cisco.com/quickview/bug/CSCvs98269"}], "source": {"advisory": "CSCvs98269", "defect": ["CSCvs98259", "CSCvs98260", "CSCvs98261"], "discovery": "EXTERNAL"}, "title": "Cisco Webex Network Recording Player and Cisco Webex Player Denial of Service Vulnerability", "x_generator": {"engine": "Vulnogram 0.0.9"}, "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@cisco.com", "DATE_PUBLIC": "2020-06-03T16:00:00.000Z", "ID": "CVE-2020-3322", "STATE": "PUBLIC", "TITLE": "Cisco Webex Network Recording Player and Cisco Webex Player Denial of Service Vulnerability"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Cisco Webex Network Recording Player", "version": {"version_data": [{"version_affected": "<", "version_value": "3.0 MR3 Security Patch 2"}, {"version_affected": "<", "version_value": "4.0 MR3"}]}}, {"product_name": "Cisco Webex Player for Microsoft Windows", "version": {"version_data": [{"version_affected": "<", "version_value": "3.0 MR3 Security Patch 2"}, {"version_affected": "<", "version_value": "4.0 MR3"}]}}]}, "vendor_name": "Cisco"}]}}, "credit": [{"lang": "eng", "value": "Cisco would like to thank Kexu Wang of Fortinet's FortiGuard Labs for reporting this vulnerability"}], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A vulnerability in Cisco Webex Network Recording Player and Cisco Webex Player for Microsoft Windows could allow an attacker to cause a process crash resulting in a Denial of service (DoS) condition for the player application on an affected system. The vulnerability exists due to insufficient validation of certain elements with a Webex recording stored in either the Advanced Recording Format (ARF) or the Webex Recording Format (WRF). An attacker could exploit this vulnerability by sending a user a malicious ARF or WRF file through a link or email attachment and persuading the user to open the file with the affected software on the local system. A successful exploit could allow the attacker to cause the Webex player application to crash when trying to view the malicious file."}]}, "generator": {"engine": "Vulnogram 0.0.9"}, "impact": {"cvss": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 3.3, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", "version": "3.1"}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-20 Improper Input Validation"}]}]}, "references": {"reference_data": [{"name": "Cisco Webex Network Recording Player and Cisco Webex Player Denial of Service Vulnerability", "refsource": "CISCO", "url": "https://quickview.cloudapps.cisco.com/quickview/bug/CSCvs98269"}]}, "source": {"advisory": "CSCvs98269", "defect": ["CSCvs98259", "CSCvs98260", "CSCvs98261"], "discovery": "EXTERNAL"}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T07:30:58.016Z"}, "title": "CVE Program Container", "references": [{"name": "Cisco Webex Network Recording Player and Cisco Webex Player Denial of Service Vulnerability", "tags": ["vendor-advisory", "x_refsource_CISCO", "x_transferred"], "url": "https://quickview.cloudapps.cisco.com/quickview/bug/CSCvs98269"}]}]}, "cveMetadata": {"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "assignerShortName": "cisco", "cveId": "CVE-2020-3322", "datePublished": "2020-06-03T17:00:18.648979Z", "dateReserved": "2019-12-12T00:00:00", "dateUpdated": "2024-09-17T00:05:26.834Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:cisco:webex_network_recording_player:-:*:*:*:*:*:*:*", "matchCriteriaId": "3AE7D641-CF31-48F6-AD29-4116EA7E7692", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:webex_player:-:*:*:*:*:windows:*:*", "matchCriteriaId": "02C17690-7694-4246-BBD6-A89447C4747E", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability in Cisco Webex Network Recording Player and Cisco Webex Player for Microsoft Windows could allow an attacker to cause a process crash resulting in a Denial of service (DoS) condition for the player application on an affected system. The vulnerability exists due to insufficient validation of certain elements with a Webex recording stored in either the Advanced Recording Format (ARF) or the Webex Recording Format (WRF). An attacker could exploit this vulnerability by sending a user a malicious ARF or WRF file through a link or email attachment and persuading the user to open the file with the affected software on the local system. A successful exploit could allow the attacker to cause the Webex player application to crash when trying to view the malicious file."}, {"lang": "es", "value": "Una vulnerabilidad en Cisco Webex Network Recording Player y Cisco Webex Player para Microsoft Windows, podr\u00eda permitir a un atacante causar un bloqueo del proceso resultando en una condici\u00f3n de Denegaci\u00f3n de servicio (DoS) para la aplicaci\u00f3n del reproductor sobre un sistema afectado. La vulnerabilidad se presenta debido a una comprobaci\u00f3n insuficiente de determinados elementos con una grabaci\u00f3n de Webex almacenada en Advanced Recording Format (ARF) o en Webex Recording Format (WRF). Un atacante podr\u00eda explotar esta vulnerabilidad al enviar a un usuario un archivo ARF o WRF malicioso por medio de un enlace o archivo adjunto de correo electr\u00f3nico y persuadiendo a un usuario de abrir el archivo con el software afectado en el sistema local. Una explotaci\u00f3n con \u00e9xito podr\u00eda permitir a un atacante causar que la aplicaci\u00f3n del reproductor Webex se bloquee cuando tratan de visualizar el archivo malicioso."}], "id": "CVE-2020-3322", "lastModified": "2021-10-19T20:07:08.287", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 3.3, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 3.3, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 1.4, "source": "ykramarz@cisco.com", "type": "Secondary"}]}, "published": "2020-06-03T17:15:25.997", "references": [{"source": "ykramarz@cisco.com", "tags": ["Vendor Advisory"], "url": "https://quickview.cloudapps.cisco.com/quickview/bug/CSCvs98269"}], "sourceIdentifier": "ykramarz@cisco.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-20"}], "source": "ykramarz@cisco.com", "type": "Secondary"}]}