Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Webex Meetings API Cross-Site Scripting Vulnerability
Vulnerability Description
A vulnerability in an API of Cisco Webex Meetings could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability is due to improper validation of user-supplied input to an application programmatic interface (API) within Cisco Webex Meetings. An attacker could exploit this vulnerability by convincing a targeted user to follow a link designed to submit malicious input to the API used by Cisco Webex Meetings. A successful exploit could allow the attacker to conduct cross-site scripting attacks and potentially gain access to sensitive browser-based information from the system of a targeted user.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Vulnerability Type
Web页面中脚本相关HTML标签转义处理不恰当(基本跨站脚本)
Vulnerability Title
Cisco Webex Meetings 跨站脚本漏洞
Vulnerability Description
Cisco Webex Meetings是美国思科(Cisco)公司的一套视频会议解决方案。 Cisco Webex Meetings 存在跨站脚本漏洞,攻击者可利用该漏洞进行跨站点脚本攻击。成功利用该漏洞可以允许攻击者利用该漏洞进行跨站点脚本攻击,并可能获得对敏感的基于浏览器的infor的访问权。
CVSS Information
N/A
Vulnerability Type
N/A