Vulnerability Details : CVE-2018-0379
Multiple vulnerabilities exist in the Cisco Webex Network Recording Player for Advanced Recording Format (ARF) and Webex Recording Format (WRF) files. An attacker could exploit these vulnerabilities by providing a user with a malicious .arf or .wrf file via email or URL and convincing the user to launch the file in the Webex recording players. Exploitation of these vulnerabilities could allow arbitrary code execution on the system of a targeted user. These vulnerabilities affect ARF and WRF recording players available from Cisco Webex Meetings Suite sites, Cisco Webex Meetings Online sites, and Cisco Webex Meetings Server. Cisco Bug IDs: CSCvi02621, CSCvi02965, CSCvi63329, CSCvi63333, CSCvi63335, CSCvi63374, CSCvi63376, CSCvi63377, CSCvi63391, CSCvi63392, CSCvi63396, CSCvi63495, CSCvi63497, CSCvi63498, CSCvi82684, CSCvi82700, CSCvi82705, CSCvi82725, CSCvi82737, CSCvi82742, CSCvi82760, CSCvi82771, CSCvj51284, CSCvj51294.
Vulnerability category: Overflow
Products affected by CVE-2018-0379
- cpe:2.3:a:cisco:webex_business_suite:*:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:webex_business_suite:*:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:webex_business_suite:*:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:webex_business_suite:31.23:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:webex_business_suite:33.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:webex_business_suite:33.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:webex_business_suite:33.2:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:webex_business_suite:32.15:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:webex_meetings_online:*:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:webex_meetings_online:1.3.35:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:webex_meeting_server:3.0:mr1:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2018-0379
0.34%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 71 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2018-0379
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
6.8
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:P/A:P |
8.6
|
6.4
|
NIST | |
7.8
|
HIGH | CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
1.8
|
5.9
|
NIST |
CWE ids for CVE-2018-0379
-
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.Assigned by:
- nvd@nist.gov (Primary)
- ykramarz@cisco.com (Secondary)
References for CVE-2018-0379
-
http://www.securitytracker.com/id/1041347
Cisco WebEx Meetings Server File ARF and WRF Processing Flaw Lets Remote Users Execute Arbitrary Code - SecurityTrackerThird Party Advisory;VDB Entry
-
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-webex-rce
Cisco Webex Network Recording Players Remote Code Execution VulnerabilitiesVendor Advisory
-
http://www.securityfocus.com/bid/104853
Multiple Cisco WebEx Network Recording Players Multiple Remote Code Execution VulnerabilitiesThird Party Advisory;VDB Entry
Jump to