CVE-2020-7033
6.3
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N
Summary
A Cross Site Scripting (XSS) Vulnerability on the Unified Portal Client (web client) used in Avaya Equinox Conferencing can allow an authenticated user to perform XSS attacks. The affected versions of Equinox Conferencing includes all 9.x versions before 9.1.10.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Avaya | Avaya Equinox Conferencing | 9.x < 9.1.10 | affected |
Weaknesses
- CWE-79: CWE-79 - Improper Neutralization of Input During Web Page Generation
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.