CVE-2020-7033: Avaya Equinox Conferencing XSS
First published: Thu Nov 12 2020(Updated: )
A Cross Site Scripting (XSS) Vulnerability on the Unified Portal Client (web client) used in Avaya Equinox Conferencing can allow an authenticated user to perform XSS attacks. The affected versions of Equinox Conferencing includes all 9.x versions before 9.1.10.
Credit: securityalerts@avaya.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Avaya Equinox Conferencing | >=9.0.0<9.1.10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2020-7033?
CVE-2020-7033 is a Cross Site Scripting (XSS) vulnerability on the Unified Portal Client (web client) used in Avaya Equinox Conferencing.
How does CVE-2020-7033 affect Avaya Equinox Conferencing?
CVE-2020-7033 allows an authenticated user to perform XSS attacks on Avaya Equinox Conferencing.
What is the severity of CVE-2020-7033?
CVE-2020-7033 has a severity rating of medium with a CVSS score of 5.4.
How can I fix CVE-2020-7033?
To fix CVE-2020-7033, upgrade to Avaya Equinox Conferencing version 9.1.10 or later.
Where can I find more information about CVE-2020-7033?
More information about CVE-2020-7033 can be found at https://downloads.avaya.com/css/P8/documents/101072147.
- collector/nvd-index
- agent/softwarecombine
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/references
- agent/author
- agent/severity
- agent/weakness
- agent/title
- agent/tags
- agent/first-publish-date
- agent/event
- agent/description
- vendor/avaya
- canonical/avaya equinox conferencing
- version/avaya equinox conferencing/9.0.0