GCVE - cpe:2.3:a:n/a:cisco_webex_unknown:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:cisco_webex_unknown:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	N/A (`22f567d3-1203-528c-8f0e-3eb9c2f6ca78`)
Product	Cisco Webex Unknown (`27231a57-965e-5d6d-9b89-20ff2c83e96e`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2018-0390`	vulnerable	2026-06-08 05:10:23.581143	Details available A vulnerability in the web framework of Cisco Webex could allow an unauthenticated, remote attacker to conduct a Document Object Model-based (DOM-based) cross-site scripting (XSS) attack against the user of the web interface of an affected system. The vulnerability is due to insufficient input validation of certain parameters that are passed to the affected software by using the HTTP POST method. An attacker who can submit malicious scripts to the affected user interface element could execute arbitrary script or HTML code in the user's browser in the context of the affected site. Cisco Bug IDs: CSCvj33287. Published: 2018-07-18T23:00:00.000Z Updated: 2024-11-29T14:50:18.623Z Open on db.gcve.eu Reference links https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-webex-DOM-xss http://www.securityfocus.com/bid/104865	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-0357`	vulnerable	2026-06-08 05:10:23.310404	Details available A vulnerability in the web framework of Cisco WebEx could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against the user of the web interface of an affected system. The vulnerability is due to insufficient input validation of certain parameters that are passed to the affected software via the HTTP GET and HTTP POST methods. An attacker who can convince a user to follow an attacker-supplied link could execute arbitrary script or HTML code in the user's browser in the context of an affected site. Cisco Bug IDs: CSCvi71274. Published: 2018-06-07T21:00:00.000Z Updated: 2024-11-29T15:03:08.950Z Open on db.gcve.eu Reference links https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-webex-xss1 http://www.securityfocus.com/bid/104420 http://www.securitytracker.com/id/1041063	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-0356`	vulnerable	2026-06-08 05:10:23.309127	Details available A vulnerability in the web framework of Cisco WebEx could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against the user of the web interface of an affected system. The vulnerability is due to insufficient input validation of certain parameters that are passed to the affected software via the HTTP GET and HTTP POST methods. An attacker who can convince a user to follow an attacker-supplied link could execute arbitrary script or HTML code in the user's browser in the context of an affected site. Cisco Bug IDs: CSCvi63757. Published: 2018-06-07T21:00:00.000Z Updated: 2024-11-29T15:03:19.160Z Open on db.gcve.eu Reference links https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-webex-xss http://www.securityfocus.com/bid/104421 http://www.securitytracker.com/id/1041062	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.