Cisco Webex Teams up to 43.4.0.25788 Session Token unprotected transport of credentials
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 5.8 | $0-$5k | 0.00 |
Summary
A vulnerability classified as problematic has been found in Cisco Webex Teams. This affects an unknown function of the component Session Token Handler. Performing a manipulation results in unprotected transport of credentials. This vulnerability is identified as CVE-2024-20395. The attack can be initiated remotely. There is not any exploit available. It is recommended to upgrade the affected component.
Details
A vulnerability was found in Cisco Webex Teams. It has been classified as problematic. This affects some unknown processing of the component Session Token Handler. The manipulation with an unknown input leads to a unprotected transport of credentials vulnerability. CWE is classifying the issue as CWE-523. Login pages do not use adequate measures to protect the user name and password while they are in transit from the client to the server. This is going to have an impact on confidentiality. The summary by CVE is:
A vulnerability in the media retrieval functionality of Cisco Webex App could allow an unauthenticated, adjacent attacker to gain access to sensitive session information. This vulnerability is due to insecure transmission of requests to backend services when the app accesses embedded media, such as images. An attacker could exploit this vulnerability by sending a message with embedded media that is stored on a messaging server to a targeted user. If the attacker can observe transmitted traffic in a privileged network position, a successful exploit could allow the attacker to capture session token information from insecurely transmitted requests and possibly reuse the captured session information to take further actions as the targeted user.
It is possible to read the advisory at sec.cloudapps.cisco.com. This vulnerability is uniquely identified as CVE-2024-20395 since 11/08/2023. The exploitability is told to be difficult. It is possible to initiate the attack remotely. No form of authentication is needed for exploitation. The technical details are unknown and an exploit is not publicly available. The attack technique deployed by this issue is T1557 according to MITRE ATT&CK.
Upgrading eliminates this vulnerability.
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
Product
Type
Vendor
Name
Version
- 3.0.13464.0
- 3.0.13538.0
- 3.0.13588.0
- 3.0.14154.0
- 3.0.14234.0
- 3.0.14375.0
- 3.0.14741.0
- 3.0.14866.0
- 3.0.15015.0
- 3.0.15036.0
- 3.0.15092.0
- 3.0.15131.0
- 3.0.15164.0
- 3.0.15221.0
- 3.0.15333.0
- 3.0.15410.0
- 3.0.15485.0
- 3.0.15645.0
- 3.0.15711.0
- 3.0.16040.0
- 3.0.16269.0
- 3.0.16273.0
- 3.0.16285.0
- 4.0
- 4.1
- 4.1.57
- 4.1.92
- 4.2
- 4.2.42
- 4.2.75
- 4.3
- 4.4
- 4.5
- 4.5.224
- 4.6
- 4.6.197
- 4.7.78
- 4.8
- 4.8.170
- 4.9
- 4.9.205
- 4.9.252
- 4.9.269
- 4.10
- 4.10.343
- 4.11.211
- 4.12
- 4.12.236
- 4.13
- 4.13.200
- 4.14
- 4.15
- 4.16
- 4.17
- 4.18
- 4.19
- 4.20
- 42.1.0.169
- 42.1.0.2219
- 42.1.0.21190
- 42.2
- 42.2.0.21338
- 42.2.0.21486
- 42.3
- 42.3.0.21576
- 42.4.1.22032
- 42.5.0.22259
- 42.6
- 42.6.0.22565
- 42.6.0.22645
- 42.7
- 42.7.0.22904
- 42.7.0.23054
- 42.8
- 42.8.0.23214
- 42.8.0.23281
- 42.9
- 42.9.0.23494
- 42.10
- 42.10.0.23814
- 42.10.0.24000
- 42.11
- 42.11.0.24187
- 42.12
- 42.12.0.24485
- 43.1
- 43.1.0.24716
- 43.2
- 43.2.0.25157
- 43.2.0.25211
- 43.3
- 43.3.0.25468
- 43.4
- 43.4.0.25788
License
Website
- Vendor: https://www.cisco.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 5.8VulDB Meta Temp Score: 5.8
VulDB Base Score: 3.7
VulDB Temp Score: 3.6
VulDB Vector: 🔍
VulDB Reliability: 🔍
NVD Base Score: 7.3
NVD Vector: 🔍
CNA Base Score: 6.4
CNA Vector (cisco): 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
Exploiting
Class: Unprotected transport of credentialsCWE: CWE-523 / CWE-522
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
0-Day Time: 🔍
Timeline
11/08/2023 🔍07/17/2024 🔍
07/17/2024 🔍
07/31/2025 🔍
Sources
Vendor: cisco.comAdvisory: cisco-sa-webex-app-ZjNm8X8j
Status: Confirmed
CVE: CVE-2024-20395 (🔍)
GCVE (CVE): GCVE-0-2024-20395
GCVE (VulDB): GCVE-100-271851
Entry
Created: 07/17/2024 19:17Updated: 07/31/2025 19:27
Changes: 07/17/2024 19:17 (64), 07/18/2024 11:18 (1), 07/18/2024 18:03 (1), 07/31/2025 19:27 (12)
Complete: 🔍
Cache ID: 216::103
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
I think the vulnerability is related to cisco webex app whose cpe is according to NVD NIST
cisco:webex_app formerly known as cisco:webex_meetings
Could you please align?
could you please also add the deprecated cpe cisco:webex_meetings just this once?
We would appreciate it very much.
Want to know what is going to be exploited?
We predict KEV entries!