How severe is CVE-2020-3322?

This vulnerability has a severity rating of LOW with a CVSS score of 3.3 out of 10.

What type of vulnerability is CVE-2020-3322?

This is classified as CWE-20, which is a common weakness in software security.

CVE-2020-3322 - LOW Severity | CVSS 3.3

Vulnerability Description

A vulnerability in Cisco Webex Network Recording Player and Cisco Webex Player for Microsoft Windows could allow an attacker to cause a process crash resulting in a Denial of service (DoS) condition for the player application on an affected system. The vulnerability exists due to insufficient validation of certain elements with a Webex recording stored in either the Advanced Recording Format (ARF) or the Webex Recording Format (WRF). An attacker could exploit this vulnerability by sending a user a malicious ARF or WRF file through a link or email attachment and persuading the user to open the file with the affected software on the local system. A successful exploit could allow the attacker to cause the Webex player application to crash when trying to view the malicious file.

Related Vulnerabilities

CVE-2009-3614

LOW

CVSS:3.3(Low)

liboping 1.3.2 allows users reading arbitrary files upon the local system.

CWE-202009

CVE-2015-8946

LOW

CVSS:3.3(Low)

ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local u...

CWE-202015

CVE-2016-0206

LOW

CVSS:3.3(Low)

IBM Cloud Orchestrator could allow a local authenticated attacker to cause the server to slow down for a short period of time by using a specially crafted and malformed URL.

CWE-202016

CVE-2016-2567

LOW

CVSS:3.3(Low)

secfilter in the Samsung kernel for Android on SM-N9005 build N9005XXUGBOB6 (Note 3) and SM-G920F build G920FXXU2COH2 (Galaxy S6) devices allows attackers to bypass URL filtering by inserting an "exce...

CWE-202016

CVE-2016-3763

LOW

CVSS:3.3(Low)

net/PacProxySelector.java in the Proxy Auto-Config (PAC) feature in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 does not ensure that URL information is ...

CWE-202016

CVE-2016-6224

LOW

CVSS:3.3(Low)

ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning on a (1) NVMe or (2) MMC drive, which allows local users to obta...

CWE-202016