The host is installed with Cisco Webex Meetings before 40.6.0 and is prone to an HTML injection vulnerability. A flaw is present in the application, which fails to handle improper checks on parameter values within affected pages. Successful exploitation could allow an unauthenticated, remote attacker to modify a web page in the context of a browser.