CVE-2021-1471 CRITICAL

CVE-2021-1471: Cisco Jabber Desktop and Mobile Client Software Vulnerabilities

Vendor Cisco
Product Cisco Jabber
Weakness CWE-170
Published March 24, 2021
Last update November 8, 2024

CVSS base score

9.9/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

What the vulnerability does

01Description

Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition. For more information about these vulnerabilities, see the Details section of this advisory.

Key dates

02Disclosure timeline

March 24, 2021 CVE published
November 8, 2024 Record updated