Vulnerability Details CVE-2020-25902
Blackboard Collaborate Ultra 20.02 is affected by a cross-site scripting (XSS) vulnerability. The XSS payload will execute on the class room, which leads to stealing cookies from users who join the class. NOTE: Third-parties dispute the validity of this entry as a possible false positive during research
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 58.1%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References
- https://github.com/Lawyer-1/Turki/blob/main/CVE-2020-25902.md
- https://www.blackboard.com/teaching-learning/collaboration-web-conferencing/blackboard-collaborate
- https://github.com/Lawyer-1/Turki/blob/main/CVE-2020-25902.md
- https://www.blackboard.com/teaching-learning/collaboration-web-conferencing/blackboard-collaborate
Products affected by CVE-2020-25902
-
cpe:2.3:a:blackboard:collaborate_ultra:20.02