Cisco Bug: CSCuq41949 - Jabber for Mac logs webex EPW in plain text.
Nov 28, 2017
- Cisco Jabber for Mac
Known Affected Releases
Symptom: A vulnerability in the logging functionality of Cisco Jabber for Mac could allow an unauthenticated, local attacker to retrieve sensitive information. The vulnerability is due to plaintext logging for some sensitive data. An attacker could exploit this vulnerability by having local access to the filesystem of the Mac running an affected version of software. Conditions: Access to log files created by an effected version of Jabber for Mac
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases