cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2019-1866,https://securityvulnerability.io/vulnerability/CVE-2019-1866,Cisco Webex Business Suite Host Header Value Integrity Vulnerability,"Cisco Webex Business Suite before 39.1.0 contains a vulnerability that could allow an unauthenticated, remote attacker to affect the integrity of the application. The vulnerability is due to improper validation of host header values. An attacker with a privileged network position, either a man-in-the-middle or by intercepting wireless network traffic, could exploit this vulnerability to manipulate header values sent by a client to the affected application. The attacker could cause the application to use input from the header to redirect a user from the Cisco Webex Meetings Online site to an arbitrary site of the attacker's choosing.",Cisco,Cisco Webex Business Suite,3.1,LOW,0.0010600000387057662,false,,false,false,true,2024-08-04T19:16:14.000Z,,false,false,,2020-04-13T00:00:00.000Z,0
CVE-2019-1680,https://securityvulnerability.io/vulnerability/CVE-2019-1680,Cisco Webex Business Suite Content Injection Vulnerability,"A vulnerability in Cisco Webex Business Suite could allow an unauthenticated, remote attacker to inject arbitrary text into a user's browser. The vulnerability is due to improper validation of input. An attacker could exploit this vulnerability by convincing a targeted user to view a malicious URL. A successful exploit could allow the attacker to inject arbitrary text into the user's browser. The attacker could use the content injection to conduct spoofing attacks. Versions prior than 3.0.9 are affected.",Cisco,Cisco Webex Business Suite,4.3,MEDIUM,0.0009800000116229057,false,,false,false,true,2024-08-04T19:16:04.000Z,,false,false,,2019-02-07T21:29:00.000Z,0