Critical severity9.6NVD Advisory· Published Nov 30, 2017· Updated Jun 17, 2026
CVE-2017-12370
CVE-2017-12370
Description
A "Cisco WebEx Network Recording Player Remote Code Execution Vulnerability" exists in Cisco WebEx Network Recording Player for Advanced Recording Format (ARF) and WebEx Recording Format (WRF) files. A remote attacker could exploit this by providing a user with a malicious ARF or WRF file via email or URL and convincing the user to launch the file. Exploitation of this could cause an affected player to crash and, in some cases, could allow arbitrary code execution on the system of a targeted user. Cisco Bug IDs: CSCvf38060, CSCvg54836, CSCvf38077, CSCvg54843, CSCvf38084, CSCvg54850.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:cisco:webex_meetings:t30:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:cisco:webex_meetings:t30:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:webex_meetings:t31:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/102017nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1039895nvdThird Party AdvisoryVDB Entry
- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171129-webex-playersnvdVendor Advisory
News mentions
0No linked articles in our index yet.