CyberSec.Space Logo
Back to CVE Browser

CVE-2020-7033

MEDIUM
6.3
CVSS Severity Score
EPSS Score0.1140%
EPSS Percentile27.87th
PublishedNov 13, 2020
Last ModifiedNov 21, 2024

Vulnerability Description

A Cross Site Scripting (XSS) Vulnerability on the Unified Portal Client (web client) used in Avaya Equinox Conferencing can allow an authenticated user to perform XSS attacks. The affected versions of Equinox Conferencing includes all 9.x versions before 9.1.10.

Affected Platforms (CPE)

📦
Avaya

Equinox Conferencing

>= 9.0.0 and < 9.1.10

References & Advisories

🔗 https://downloads.avaya.com/css/P8/documents/101072147
🔗 https://downloads.avaya.com/css/P8/documents/101072147

Related Vulnerabilities

CVE-2020-70378.1

An XML External Entities (XXE) vulnerability in Media Server component of Avaya Equinox Conferencing could allow an authenticated,...

CVE-2020-70387.5

A vulnerability was discovered in Management component of Avaya Equinox Conferencing that could potentially allow an unauthenticat...

CVE-2026-53430

Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Mes...

CVE-2026-48854

Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust...