Cisco has released a new round of security patches to address potentially serious WebExec Webex flaw first addressed one month ago. The flaw affects Cisco Webex Meetings Desktop and has been rated as a high severity command injection vulnerability. The issue could be exploited by a malware or ill-intentioned logged-in user to gain system administrator rights and carry out malicious activities. A few days after the disclosure of the flaw, researchers at SecureAuth discovered that official patch released by Cisco was incomplete.”]
Source: https://securityaffairs.co/wordpress/78489/security/cisco-fixed-webexec-again.html