Cisco Systems has patched two high-severity vulnerabilities in its Webex video conferencing platform. If exploited, an attacker could allow an attacker to execute code on affected systems. Cisco said it s not aware of the flaws being exploited by attackers at this time. The flaws stem from an insufficient validation of non-detailed, certain elements within a Webex recording that is stored in either ARF or WRF. Cisco on Wednesday released addressing flaws tied to a total of 13 vulnerabilities tied to the Webex platform.
Source: https://threatpost.com/high-severity-cisco-webex-flaws-fixed/153462/