A vulnerability classified as critical was found in Cisco Webex Meetings Client on Android (Unified Communication Software) (affected version unknown). Affected by this vulnerability is an unknown code block of the component Avatar Handler. The manipulation with an unknown input leads to a privilege escalation vulnerability. The CWE definition for the vulnerability is CWE-284. As an impact it is known to affect integrity. The summary by CVE is:

A vulnerability in Cisco Webex Meetings for Android could allow an authenticated, remote attacker to modify the avatar of another user. This vulnerability is due to improper authorization checks. An attacker could exploit this vulnerability by sending a crafted request to the Cisco Webex Meetings client of a targeted user of a meeting in which they are both participants. A successful exploit could allow the attacker to modify the avatar of the targeted user.

The weakness was shared 04/08/2021 as cisco-sa-webex-andro-iac-f3UR8frB. It is possible to read the advisory at tools.cisco.com. This vulnerability is known as CVE-2021-1467 since 11/13/2020. The exploitation appears to be easy. The attack can be launched remotely. The requirement for exploitation is a single authentication. The technical details are unknown and an exploit is not publicly available. The pricing for an exploit might be around USD $0-$5k at the moment (estimation calculated on 04/11/2021). The attack technique deployed by this issue is T1068 according to MITRE ATT&CK.

Upgrading eliminates this vulnerability.

Productinfoedit

Type

• Unified Communication Software

Vendor

• Cisco

Name

• Webex Meetings Client

CPE 2.3infoedit

• 🔒

CPE 2.2infoedit

• 🔒

CVSSv3infoedit

CVSSv2infoedit

Exploitinginfoedit

Threat Intelligenceinfoedit

Countermeasuresinfoedit

Timelineinfoedit

Sourcesinfoedit

Entryinfoedit

Comments