Cisco WebEx Chrome extension (20M users) has a critical code execution vulnerability. Tavis Ormandy of Project Zero revealed the vulnerability on Monday. An updated, fixed version (1.0.3) is available, but I don’t know in how long it will roll out. Here is how to check that you have the latest version, how to install it if not, and how to further protect you from the weak patch by using a dedicated profile to mitigate that risk.”]
Source: https://blog.filippo.io/webex-extension-vulnerability/