CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-20133

A vulnerability in the web interface of Cisco Webex Meetings could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface. This vulnerability exists because of insufficient validation of user-supplied input in Webex Events (classic) programs, email templates, and survey questions. An attacker could exploit this vulnerability by persuading a user to click a malicious link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 35.2%

CVSS Severity

CVSS v3 Score 5.4

References

Products affected by CVE-2023-20133

Cisco » Webex Meetings » Version: 39.10

cpe:2.3:a:cisco:webex_meetings:39.10
Cisco » Webex Meetings » Version: 39.11

cpe:2.3:a:cisco:webex_meetings:39.11
Cisco » Webex Meetings » Version: 39.6

cpe:2.3:a:cisco:webex_meetings:39.6
Cisco » Webex Meetings » Version: 39.7

cpe:2.3:a:cisco:webex_meetings:39.7
Cisco » Webex Meetings » Version: 39.7.4

cpe:2.3:a:cisco:webex_meetings:39.7.4
Cisco » Webex Meetings » Version: 39.7.7

cpe:2.3:a:cisco:webex_meetings:39.7.7
Cisco » Webex Meetings » Version: 39.8

cpe:2.3:a:cisco:webex_meetings:39.8
Cisco » Webex Meetings » Version: 39.8.2

cpe:2.3:a:cisco:webex_meetings:39.8.2
Cisco » Webex Meetings » Version: 39.8.3

cpe:2.3:a:cisco:webex_meetings:39.8.3
Cisco » Webex Meetings » Version: 39.8.4

cpe:2.3:a:cisco:webex_meetings:39.8.4
Cisco » Webex Meetings » Version: 39.9

cpe:2.3:a:cisco:webex_meetings:39.9
Cisco » Webex Meetings » Version: 39.9.1

cpe:2.3:a:cisco:webex_meetings:39.9.1
Cisco » Webex Meetings » Version: 40.1

cpe:2.3:a:cisco:webex_meetings:40.1
Cisco » Webex Meetings » Version: 40.2

cpe:2.3:a:cisco:webex_meetings:40.2
Cisco » Webex Meetings » Version: 40.4

cpe:2.3:a:cisco:webex_meetings:40.4
Cisco » Webex Meetings » Version: 40.4.10

cpe:2.3:a:cisco:webex_meetings:40.4.10
Cisco » Webex Meetings » Version: 40.6

cpe:2.3:a:cisco:webex_meetings:40.6
Cisco » Webex Meetings » Version: 40.6.2

cpe:2.3:a:cisco:webex_meetings:40.6.2
Cisco » Webex Meetings » Version: 42.10

cpe:2.3:a:cisco:webex_meetings:42.10
Cisco » Webex Meetings » Version: 42.11

cpe:2.3:a:cisco:webex_meetings:42.11
Cisco » Webex Meetings » Version: 42.12

cpe:2.3:a:cisco:webex_meetings:42.12
Cisco » Webex Meetings » Version: 42.6

cpe:2.3:a:cisco:webex_meetings:42.6
Cisco » Webex Meetings » Version: 42.7

cpe:2.3:a:cisco:webex_meetings:42.7
Cisco » Webex Meetings » Version: 42.8

cpe:2.3:a:cisco:webex_meetings:42.8
Cisco » Webex Meetings » Version: 42.9

cpe:2.3:a:cisco:webex_meetings:42.9
Cisco » Webex Meetings » Version: 43.1

cpe:2.3:a:cisco:webex_meetings:43.1
Cisco » Webex Meetings » Version: 43.2

cpe:2.3:a:cisco:webex_meetings:43.2
Cisco » Webex Meetings » Version: 43.3

cpe:2.3:a:cisco:webex_meetings:43.3
Cisco » Webex Meetings » Version: 43.4

cpe:2.3:a:cisco:webex_meetings:43.4
Cisco » Webex Meetings » Version: 43.4.1

cpe:2.3:a:cisco:webex_meetings:43.4.1
Cisco » Webex Meetings » Version: 43.4.2

cpe:2.3:a:cisco:webex_meetings:43.4.2
Cisco » Webex Meetings » Version: 43.5.0

cpe:2.3:a:cisco:webex_meetings:43.5.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-20133

Products

Pricing

Contact Us