Skip to main content

Government officials will never ask you to transfer money or disclose bank log-in details over a phone call.

Call the 24/7 ScamShield Helpline at 1799 if you are unsure if something is a scam.

Cyber Security Agency of Singapore
  1. Home
  2. Alerts & Advisories
  3. Alerts
  4. High-Severity Vulnerability in Cisco Webex App
Alerts

High-Severity Vulnerability in Cisco Webex App

21 April 2025

Cisco has released security updates addressing a vulnerability in Cisco Webex App. Users and administrators of affected products are advised to update to the latest versions immediately.

Cisco has released security updates addressing a vulnerability (CVE-2025-20236) in Cisco Webex App. 

Successful exploitation of the vulnerability could allow an unauthorised attacker to trick victims into clicking on maliciously crafted meeting invite links to download arbitrary files and perform remote code execution.

This vulnerability affects Cisco Webex App versions 44.6 and 44.7.

Users and administrators of affected products are advised to update to the latest versions immediately.

More information is available here:

https://nvd.nist.gov/vuln/detail/CVE-2025-20236

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-app-client-rce-ufyMMYLC

https://www.bleepingcomputer.com/news/security/cisco-webex-bug-lets-hackers-gain-code-execution-via-meeting-links/

Back to top