CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2833 matches found

CVE-2026-20233

A vulnerability in the web-based user interface of Cisco Webex Meetings could have allowed an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. Cisco has addressed this vulnerability in the Webex Meetings service, and no customer action is needed. This vulnerability...

6.1CVSS

Exploits0References1

Vulnrichment•added 7 hours ago•2 views

CVE-2026-20233 Cisco Webex Meetings Cross-Site Scripting Vulnerability

6.1CVSS6AI score

Exploits0References1

EUVD•added 7 hours ago•2 views

EUVD-2026-34135

6.1CVSS6AI score

Exploits0References1

Cvelist•added 7 hours ago•3 views

CVE-2026-20233 Cisco Webex Meetings Cross-Site Scripting Vulnerability

6.1CVSS

Exploits0References1

CVE•added 7 hours ago•6 views

CVE-2026-20233

Cisco Webex Meetings web UI vulnerable to cross-site scripting (XSS) due to insufficient input validation. Exploitation requires a user to follow a malicious link, enabling arbitrary script execution in the target’s browser and potential access to browser-based information. Affected: web-based us...

6.1CVSS6AI score

Exploits0References1

ATTACKERKB•added 7 hours ago•2 views

CVE-2026-20233

6.1CVSS6AI score

Exploits0References2Affected Software1

Cisco•added 7 hours ago•3 views

Cisco Webex Meetings Cross-Site Scripting Vulnerability

6.1CVSS6AI score

Exploits0References1

Positive Technologies•added 23 hours ago•5 views

PT-2026-45988

6.1CVSS6AI score

Exploits0References2

Malwarebytes•added 2026/05/20 3:33 p.m.•7 views

Fake malware-signing service Fox Tempest dismantled by Microsoft

Microsoft says it dismantled a malware-signing-as-a-service MSaaS called Fox Tempest, which helped cybercriminals make malware appear legitimate. The service let customers submit malicious files to be digitally signed with short-lived Microsoft-issued certificates, making the malware look...

6AI score

Exploits0

Positive Technologies•added 2026/05/08 12:0 a.m.•3 views

PT-2026-39471

CVE-2026-2710 - CVE-2022-1234: Cisco Webex Meeting Server Authentication Bypass CVE ID :CVE-2026-2710 Published : May 7, 2026, 11:16 p.m. | 58 minutes ago Description :Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Severity: 0.0 | NA Visit the link for...

8.8CVSS7.2AI score0.00122EPSS

Exploits1References1

Positive Technologies•added 2026/05/07 12:0 a.m.•6 views

PT-2026-39333

CVE-2026-6278 - CVE-2019-1905: Cisco WebEx Meeting Center Unvalidated Redirect CVE ID :CVE-2026-6278 Published : May 6, 2026, 11:16 p.m. | 51 minutes ago Description :Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Severity: 0.0 | NA Visit the link for...

5.8CVSS6.1AI score0.00147EPSS

Exploits0References1

NCSC•added 2026/04/17 8:37 a.m.•1 views

Lack of vulnerability awareness in Cisco WebEx Services

Cisco has identified a vulnerability in Cisco Webex Services, specifically in the SSO integration with Control Hub. The vulnerability lies in the incorrect validation of certificates during the SSO integration of Cisco Webex Services through Control Hub. An unauthenticated external attacker can...

9.8CVSS6AI score0.00046EPSS

Exploits0References1

RedhatCVE•added 2026/04/16 7:22 p.m.•1 views

CVE-2026-20184

A vulnerability in the integration of single sign-on SSO with Control Hub in Cisco Webex Services could have allowed an unauthenticated, remote attacker to impersonate any user within the service. This vulnerability existed because of improper certificate validation. Prior to this vulnerability...

9.8CVSS5.9AI score0.00046EPSS

Exploits0References1

The Hacker News•added 2026/04/16 11:27 a.m.•7 views

Cisco Patches Four Critical Identity Services, Webex Flaws Enabling Code Execution

Cisco has announced patches to address four critical security flaws impacting Identity Services and Webex Services that could result in arbitrary code execution and allow an attacker to impersonate any user within the service. The details of the vulnerabilities are below - CVE-2026-20184 CVSS...

9.9CVSS6.8AI score0.00469EPSS

Exploits1

CNVD•added 2026/04/16 12:0 a.m.•0 views

Cisco Webex Contact Center Desktop Agent Cross-Site Scripting Vulnerability

Cisco Webex Contact Center is a cloud contact center solution for customer service and call center management. A cross-site scripting vulnerability exists in Cisco Webex Contact Center. The vulnerability stems from a failure of the Desktop Agent feature to properly handle HTML and scripted conten...

6.1CVSS5.6AI score0.00054EPSS

Exploits0

EUVD•added 2026/04/15 6:31 p.m.•0 views

EUVD-2026-22967

A vulnerability in the Desktop Agent functionality of Cisco Webex Contact Center could have allowed an unauthenticated, remote attacker to conduct cross-site scripting attacks. Cisco has addressed this vulnerability in the Cisco Webex Contact Center service, and no customer action is needed. This...

6.1CVSS5.8AI score0.00054EPSS

Exploits0References2

EUVD•added 2026/04/15 6:31 p.m.•1 views

EUVD-2026-22971

9.8CVSS5.9AI score0.00046EPSS

Exploits0References2

NVD•added 2026/04/15 5:17 p.m.•0 views

CVE-2026-20170

6.1CVSS0.00054EPSS

Exploits0References1

NVD•added 2026/04/15 5:17 p.m.•2 views

CVE-2026-20184

9.8CVSS0.00046EPSS

Exploits0References1

CVE•added 2026/04/15 4:10 p.m.•61 views

CVE-2026-20170

The CVE-2026-20170 entry affects Cisco Webex Contact Center’s Desktop Agent functionality. The vulnerability arises from improper handling of HTML and script content, enabling an unauthenticated, remote attacker to perform cross-site scripting via a user-traversed link. Successful exploitation co...

6.1CVSS5.8AI score0.00054EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by