A vulnerability in Cisco Webex Meetings Desktop App for Windows could allow an unauthenticated, remote attacker to overwrite arbitrary files on an end-user system. The vulnerability is due to improper validation of URL parameters that are sent from a website to the affected application. An attacker could exploit this vulnerability by persuading a user to follow a URL to a website that is designed to submit crafted input to the affected application. A successful exploit could allow the attacker to overwrite arbitrary files on the affected system, possibly corrupting or deleting critical system files.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: cisco
Published: 2020-08-26T16:16:29.673288Z
Updated: 2024-09-16T16:33:21.587Z
Reserved: 2019-12-12T00:00:00
Link: CVE-2020-3440
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-08-26T17:15:13.490
Modified: 2020-09-02T18:34:49.353
Link: CVE-2020-3440
Redhat
No data.