CVE-2024-20405 | Cisco Unified Contact Center Enterprise Web-Based Management Interface cross site scripting (cisco-sa-finesse-ssrf-rfi-Um7wT8Ew)

Posted by Angelo Barbosa | Jun 5, 2024 | CVE

A vulnerability has been found in Cisco Unified Contact Center Enterprise, Unified Contact Center Express, Finesse and Packaged Contact Center Enterprise and classified as problematic. This vulnerability affects unknown code of the component Web-Based Management Interface. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2024-20405. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-20405 | Cisco Unified Contact Center Enterprise Web-Based Management Interface cross site scripting (cisco-sa-finesse-ssrf-rfi-Um7wT8Ew)

Related Posts

CVE-2024-6083 | PHPVibe 11.0.46 Media Upload Page upload-mp3.php file unrestricted upload

CVE-2024-32735 | CyberPower PowerPanel Enterprise up to 2.8.2 PDNU REST API missing authentication

CVE-2024-7198 | SourceCodester Complaints Report Management System 1.0 manage_station.php id sql injection

CVE-2023-6148 | Qualys Policy Compliance Connector Plugin up to 1.0.5 on Jenkins cross site scripting