GHSA-m526-j28f-j8qx

Опубликовано: 21 мая 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

A vulnerability in Cisco Webex could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack.

A vulnerability is due to improper filtering of user-supplied input. An attacker could exploit this vulnerability by persuading a user to follow a malicious link. A successful exploit could allow the attacker to conduct a cross-site scripting attack against the targeted user.

A vulnerability in Cisco Webex could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack.

Ссылки

EPSS

Процентиль: 13%

0.00043

Низкий

6.1 Medium

CVSS3

CVE ID

CVE-2025-20250

Дефекты

CWE-79

Связанные уязвимости

CVE-2025-20250

CVSS3: 6.1

nvd

29 дней назад

A vulnerability in Cisco Webex could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack. A vulnerability is due to improper filtering of user-supplied input. An attacker could exploit this vulnerability by persuading a user to follow a malicious link. A successful exploit could allow the attacker to conduct a cross-site scripting attack against the targeted user.

BDU:2025-06738

CVSS3: 6.1

fstec

29 дней назад

Уязвимость облачной платформы для веб-конференцсвязи Cisco Webex, существующая из-за непринятия мер по защите структуры веб-страницы, позволяющая нарушителю провести атаку межсайтового скриптинга (XSS)

EPSS

Процентиль: 13%

0.00043

Низкий

6.1 Medium

CVSS3

CVE ID

CVE-2025-20250

Дефекты

CWE-79