Cisco Webex ‘Ghost’ Flaw Opens Meetings to Snooping

A vulnerability in Cisco’s Webex conferencing application could allow an attendee to act as a “ghost” in the meeting – allowing them to spy in on potentially sensitive company secrets. To exploit the flaw (CVE-2020-3419), attackers can be remote – however, they would need access to join the Webex meetings, including applicable meeting “join” links and passwords.

Read full article on Threat Post