Cisco Bug: CSCuo16166 - MMN has Directory Traversal issues
Jan 30, 2020
- Cisco Webex Meetings
Known Affected Releases
Symptoms: A vulnerability in the PHP code of the Webex MeetMeNow Server could allow an authenticated, remote attacker to obtain the contents of arbitrary files of an affected device. The vulnerability is due to improper sanitization of user input. An exploit could allow the attacker to view the contents of any file that is readable by the Apache service account. Conditions: None.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases