Allele Security Alert
ASA-2018-00001, CVE-2018-15442, CISCO-SA-20181024
Remote code execution
Cisco Webex Meetings Desktop App
Cisco Webex Productivity Tools Releases
Cisco Webex Meetings Desktop App releases prior to 33.5.6
Cisco Webex Productivity Tools Releases 32.6.0 and later prior to 33.0.5
Cisco Webex Meetings Desktop App 33.5.6
Cisco Webex Productivity Tools Releases 33.0.5
Vulnerability that allows remote code execution as privileged user affects certain versions of Cisco Webex.
Ron Bowes and Jeff McJunkin
Technical Rundown of WebExec
Cisco Webex Meetings Desktop App Update Service Command Injection Vulnerability
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: February 28, 2019