CVE-2017-3794 Cisco CVE debrief

Who should care

Organizations running Cisco WebEx Meetings Server 2.6, especially teams that manage the administrative web interface, should prioritize this issue. It is most relevant where administrators access the product through a browser and where administrative actions can be triggered by session-authenticated requests.

Technical summary

NVD describes CVE-2017-3794 with CVSS 3.0 vector CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H, indicating a network-reachable issue that requires user interaction but no prior privileges. The vulnerability is classified as CWE-352 (CSRF). In practical terms, the attack depends on an administrative user being persuaded to load or submit a crafted request while authenticated to Cisco WebEx Meetings Server.

Defensive priority

High for environments that still run Cisco WebEx Meetings Server 2.6 or have not confirmed the fixed release. Because the issue can be triggered remotely through an admin’s browser session, exposed administrative interfaces and active admin accounts increase urgency.

Recommended defensive actions

• Upgrade Cisco WebEx Meetings Server from 2.6 to the fixed release 2.7.1.12 or later.
• Review the Cisco security advisory for the product and confirm the deployment is not on an affected build.
• Restrict access to administrative interfaces to trusted networks and users only.
• Verify that browser-based administrative actions are protected against CSRF where possible.
• Monitor administrative activity for unexpected or unusual configuration changes.

Evidence notes

Source metadata identifies the issue as a Cisco WebEx Meetings Server CSRF vulnerability. NVD assigns CWE-352 and the CVSS 3.0 vector AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H. The supplied record states affected release 2.6 and fixed release 2.7.1.12. The CVE was published on 2017-01-26 and the NVD record was last modified on 2026-05-13.

Official resources