Vulnerabilities > Cisco > UCS C220 M5 Rack Server Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-08-16 CVE-2023-20228 Cross-site Scripting vulnerability in Cisco products
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability is due to insufficient validation of user input.
network
low complexity
cisco CWE-79
6.1