CVE-2020-3194

HIGH

Cisco Webex Network Recording Player < 40.2 - Remote Code Execution via Malicious ARF/WRF File

Title source: llm

Description

A vulnerability in Cisco Webex Network Recording Player for Microsoft Windows and Cisco Webex Player for Microsoft Windows could allow an attacker to execute arbitrary code on an affected system. The vulnerability exists due to insufficient validation of certain elements with a Webex recording stored in either the Advanced Recording Format (ARF) or the Webex Recording Format (WRF). An attacker could exploit this vulnerability by sending a user a malicious ARF or WRF file through a link or email attachment and persuading the user to open the file with the affected software on the local system. A successful exploit could allow the attacker to execute arbitrary code on the affected system with the privileges of the targeted user.

References (1)

Core 1

Core References

Vendor Advisory vendor-advisory x_refsource_cisco

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-player-Q7Rtgvby

Scores

CVSS v3 7.8

EPSS 0.0079

EPSS Percentile 74.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-119 CWE-20

Status published

Products (5)

cisco/webex_meetings 39.5 - 39.5.18

cisco/webex_meetings_online < 1.3.48

cisco/webex_meetings_server 4.0 (3 CPE variants)

cisco/webex_meetings_server < 4.0

cisco/webex_network_recording_player < 40.2

Published Apr 15, 2020

Tracked Since Feb 18, 2026