Cisco Webex Meetings could allow a remote authenticated attacker to execute arbitrary code on the system, caused by improper deserialization of Java code within login requests. By sending specially-crafted login requests, an attacker could exploit this vulnerability to execute arbitrary Java code on the system.
Cisco Web Security Appliance could allow a remote attacker to bypass security restrictions, caused by improper handling of certain character combinations inserted into a URL. By sending specially-crafted URLs, an attacker could exploit this vulnerability to bypass the web proxy and access web content that has been blocked by policy.
Refer to Cisco Security Advisory for patch, upgrade or suggested workaround information.