CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-20263

A vulnerability in the web-based management interface of Cisco HyperFlex HX Data Platform could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. This vulnerability is due to improper input validation of the parameters in an HTTP request. An attacker could exploit this vulnerability by persuading a user to click a crafted link. A successful exploit could allow the attacker to redirect a user to a malicious website.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 64.0%

CVSS Severity

CVSS v3 Score 4.7

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-hyperflex-redirect-UxLgqdUF
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-hyperflex-redirect-UxLgqdUF

Products affected by CVE-2023-20263

Cisco » Hyperflex Hx Data Platform » Version: 5.0

cpe:2.3:o:cisco:hyperflex_hx_data_platform:5.0
Cisco » Hyperflex Hx Data Platform » Version: 5.5

cpe:2.3:o:cisco:hyperflex_hx_data_platform:5.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-20263

Products

Pricing

Contact Us