cbcvebase.
CVE-2023-20058
published 2023-01-20

CVE-2023-20058: A vulnerability in the web-based management interface of Cisco Unified Intelligence Center could allow an unauthenticated, remote attacker to conduct a…

medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
A vulnerability in the web-based management interface of Cisco Unified Intelligence Center could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the interface. This vulnerability exists because the web-based management interface does not properly validate user-supplied input. An attacker could exploit this vulnerability by persuading a user of the interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive browser-based information.

Affected

32 ranges· showing 25
VendorProductVersion rangeFixed in
ciscocisco_packaged_contact_center_enterprise
ciscocisco_packaged_contact_center_enterprise
ciscocisco_packaged_contact_center_enterprise
ciscocisco_packaged_contact_center_enterprise
ciscocisco_packaged_contact_center_enterprise
ciscocisco_packaged_contact_center_enterprise
ciscocisco_unified_contact_center_enterprise
ciscocisco_unified_contact_center_express
ciscocisco_unified_contact_center_express
ciscocisco_unified_contact_center_express
ciscocisco_unified_contact_center_express
ciscocisco_unified_contact_center_express
ciscocisco_unified_contact_center_express
ciscocisco_unified_contact_center_express
ciscocisco_unified_intelligence_center
ciscocisco_unified_intelligence_center
ciscocisco_unified_intelligence_center
ciscocisco_unified_intelligence_center
ciscocisco_unified_intelligence_center
ciscocisco_unified_intelligence_center
ciscocisco_unified_intelligence_center
ciscopackaged_contact_center_enterprise>= 12.5\(1\)_su2 < 12.5\(1\)_su2_es0512.5\(1\)_su2_es05
ciscopackaged_contact_center_enterprise>= 9.0\(1\) < 12.5\(1\)_su2_es0512.5\(1\)_su2_es05
ciscounified_contact_center_enterprise< 12.5\(1\)_es0212.5\(1\)_es02
ciscounified_contact_center_enterprise>= 12.5\(2\) < 12.6\(1\)_es0612.6\(1\)_es06