CVE-2023-20037

Name of the Vulnerable Software and Affected Versions Cisco Industrial Network Director (affected versions not specified)

Description The issue is due to improper validation of content submitted to the affected application, allowing an authenticated, remote attacker to conduct stored cross-site scripting (XSS) attacks. An attacker could exploit this by sending requests containing malicious values to the affected system, potentially executing arbitrary script code in the context of the affected interface or accessing sensitive, browser-based information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.