CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-20053

A vulnerability in the web-based management interface of Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. This vulnerability is due to insufficient user input validation. An attacker could exploit this vulnerability by persuading a user of the interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 27.8%

CVSS Severity

CVSS v3 Score 6.1

References

Products affected by CVE-2023-20053

Cisco » Nexus Dashboard » Version: N/A

cpe:2.3:a:cisco:nexus_dashboard:-
Cisco » Nexus Dashboard » Version: 1.1

cpe:2.3:a:cisco:nexus_dashboard:1.1
Cisco » Nexus Dashboard » Version: 2.0

cpe:2.3:a:cisco:nexus_dashboard:2.0
Cisco » Nexus Dashboard » Version: 2.0.1

cpe:2.3:a:cisco:nexus_dashboard:2.0.1
Cisco » Nexus Dashboard » Version: 2.0.2

cpe:2.3:a:cisco:nexus_dashboard:2.0.2
Cisco » Nexus Dashboard » Version: 2.1

cpe:2.3:a:cisco:nexus_dashboard:2.1
Cisco » Nexus Dashboard » Version: 2.1.1d

cpe:2.3:a:cisco:nexus_dashboard:2.1.1d
Cisco » Nexus Dashboard » Version: 2.1.1e

cpe:2.3:a:cisco:nexus_dashboard:2.1.1e
Cisco » Nexus Dashboard » Version: 2.1.2

cpe:2.3:a:cisco:nexus_dashboard:2.1.2
Cisco » Nexus Dashboard » Version: 2.1.2d

cpe:2.3:a:cisco:nexus_dashboard:2.1.2d
Cisco » Nexus Dashboard » Version: 2.1.2f

cpe:2.3:a:cisco:nexus_dashboard:2.1.2f
Cisco » Nexus Dashboard » Version: 2.2

cpe:2.3:a:cisco:nexus_dashboard:2.2
Cisco » Nexus Dashboard » Version: 2.2(1e)

cpe:2.3:a:cisco:nexus_dashboard:2.2(1e)
Cisco » Nexus Dashboard » Version: 2.2(1h)

cpe:2.3:a:cisco:nexus_dashboard:2.2(1h)
Cisco » Nexus Dashboard » Version: 2.2(2d)

cpe:2.3:a:cisco:nexus_dashboard:2.2(2d)

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-20053

Products

Pricing

Contact Us