CVE-2019-1674

HIGH

Cisco Webex Meetings < 33.6.6 Authenticated OS Command Injection via Update Service

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-1674. PoCs published by SecureAuth.

AI-analyzed exploit summary This exploit leverages a command injection vulnerability in Cisco WebEx Meetings Desktop App's update service to achieve local privilege escalation by manipulating version numbers and file paths to execute arbitrary commands with SYSTEM privileges.

Description

A vulnerability in the update service of Cisco Webex Meetings Desktop App and Cisco Webex Productivity Tools for Windows could allow an authenticated, local attacker to execute arbitrary commands as a privileged user. The vulnerability is due to insufficient validation of user-supplied parameters. An attacker could exploit this vulnerability by invoking the update service command with a crafted argument. An exploit could allow the attacker to run arbitrary commands with SYSTEM user privileges. While the CVSS Attack Vector metric denotes the requirement for an attacker to have local access, administrators should be aware that in Active Directory deployments, the vulnerability could be exploited remotely by leveraging the operating system remote management tools. This vulnerability is fixed in Cisco Webex Meetings Desktop App Release 33.6.6 and 33.9.1 releases. This vulnerability is fixed in Cisco Webex Productivity Tools Release 33.0.7.

Exploits (1)

exploitdb WORKING POC

by SecureAuth · textlocalwindows

https://www.exploit-db.com/exploits/46479

View Code ZIP pw:eip

This exploit leverages a command injection vulnerability in Cisco WebEx Meetings Desktop App's update service to achieve local privilege escalation by manipulating version numbers and file paths to execute arbitrary commands with SYSTEM privileges.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Cisco WebEx Meetings Desktop App versions 33.6.4.15 to 33.8.2.7

No auth needed

Prerequisites: Local access to the target system · Presence of vulnerable Cisco WebEx Meetings Desktop App · Specific versions of ptUpdate.exe (3307.1.1811.1500 and 3306.4.1811.1600) · Ability to place files in a controlled directory

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1548.002 - Bypass User Account Control

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Third Party Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/107184

Vendor Advisory vendor-advisory x_refsource_cisco

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190227-wmda-cmdinj

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/46479/

Scores

CVSS v3 7.8

EPSS 0.1076

EPSS Percentile 95.3%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-78

Status published

Products (6)

cisco/webex_meetings < 33.6.6

cisco/webex_meetings_online t33.0.5

cisco/webex_meetings_online t33.6.0

cisco/webex_meetings_online t33.6.1

cisco/webex_meetings_online t33.6.2

cisco/webex_productivity_tools 32.6.0 - 33.0.7

Published Feb 28, 2019

Tracked Since Feb 18, 2026