Critical Weakness Found In Cisco Webex's Mac Application
A critical vulnerability has been found in the Mac desktop application of Cisco Webex, the Video conferencing platform. Cisco said in a statement about the vulnerability that an unidentified attacker could remotely run code on the target system by exploiting the vulnerability.
The vulnerability is caused by incorrect cryptographic verifications on files downloaded by the application while the software update is taking place. The exploit of vulnerability occurs when the attacker directs the target user to a site that offers fake Webex updates and the Webex Mac desktop application runs the files without performing the necessary checks on the downloaded files. It is recommended that the application be upgraded to the most current version in order not to be affected by the weakness.