Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-87397
HistoryOct 11, 2022 - 12:00 a.m.

Cisco Jabber Input Validation Error Vulnerability

2022-10-1100:00:00
China National Vulnerability Database
www.cnvd.org.cn
340
cisco jabber
input validation
version 14.1.3
xmpp messages
remote attacker
authenticated

0.001 Low

EPSS

Percentile

19.4%

JSON

Cisco Jabber is a unified communications client solution from Cisco. An input validation error vulnerability exists in Cisco Jabber Client Software versions prior to 14.1.3, which stems from improper handling of nested XMPP messages in requests sent to Cisco Jabber Client Software, and could be exploited by an authenticated remote attacker to manipulate the content of XMPP messages used by the affected application .

CPENameOperatorVersion
cisco cisco jabberlt14.1.3

Related

cvelist 1
kaspersky 1
cisco 1
nessus 2
cve 1
prion 1
nvd 1
cvelist
cvelist
CVE-2022-20917
2023-09-15 02:12:51
kaspersky
kaspersky
KLA20106 ACE vulnerability in Cisco Jabber
2022-10-05 00:00:00
cisco
cisco
Cisco Jabber Client Software Extensible Messaging and Presence Protocol Stanza Smuggling Vulnerability
2022-10-05 16:00:00
nessus
nessus
Cisco Jabber Client For Windows XMPP Stanza Smuggling (cisco-sa-jabber-xmpp-Ne9SCM)
2022-10-07 00:00:00
Cisco Jabber Client For MacOS XMPP Stanza Smuggling (cisco-sa-jabber-xmpp-Ne9SCM)
2022-10-07 00:00:00
cve
cve
CVE-2022-20917
2023-09-15 03:15:07
prion
prion
Design/Logic Flaw
2023-09-15 03:15:00
nvd
nvd
CVE-2022-20917
2023-09-15 03:15:07

0.001 Low

EPSS

Percentile

19.4%

JSON
Related for CNVD-2022-87397
cvelist1kaspersky1cisco1nessus2cve1prion1nvd1