Vulnerability-Lookup

CNVD-2026-17802

Vulnerability from cnvd - Published: 2026-04-17

Title

Cisco Webex Contact Center桌面代理跨站脚本漏洞

Description

Cisco Webex Contact Center是一款用于客户服务与呼叫中心管理的云联络中心解决方案。 Cisco Webex Contact Center存在跨站脚本漏洞。该漏洞源于Desktop Agent功能未能正确处理HTML和脚本内容，攻击者可利用该漏洞通过恶意链接窃取用户身份验证及会话信息。

Severity

中

Patch Name

Cisco Webex Contact Center桌面代理跨站脚本漏洞的补丁

Patch Description

Cisco Webex Contact Center是一款用于客户服务与呼叫中心管理的云联络中心解决方案。 Cisco Webex Contact Center存在跨站脚本漏洞。该漏洞源于Desktop Agent功能未能正确处理HTML和脚本内容，攻击者可利用该漏洞通过恶意链接窃取用户身份验证及会话信息。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webexcc-xss-WEX5nUnA

Reference

https://nvd.nist.gov/vuln/detail/CVE-2026-20170

Impacted products

Name
Cisco Cisco Webex Contact Center

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2026-20170",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2026-20170"
    }
  },
  "description": "Cisco Webex Contact Center\u662f\u4e00\u6b3e\u7528\u4e8e\u5ba2\u6237\u670d\u52a1\u4e0e\u547c\u53eb\u4e2d\u5fc3\u7ba1\u7406\u7684\u4e91\u8054\u7edc\u4e2d\u5fc3\u89e3\u51b3\u65b9\u6848\u3002\n\nCisco Webex Contact Center\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u6e90\u4e8eDesktop Agent\u529f\u80fd\u672a\u80fd\u6b63\u786e\u5904\u7406HTML\u548c\u811a\u672c\u5185\u5bb9\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u901a\u8fc7\u6076\u610f\u94fe\u63a5\u7a83\u53d6\u7528\u6237\u8eab\u4efd\u9a8c\u8bc1\u53ca\u4f1a\u8bdd\u4fe1\u606f\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webexcc-xss-WEX5nUnA",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2026-17802",
  "openTime": "2026-04-17",
  "patchDescription": "Cisco Webex Contact Center\u662f\u4e00\u6b3e\u7528\u4e8e\u5ba2\u6237\u670d\u52a1\u4e0e\u547c\u53eb\u4e2d\u5fc3\u7ba1\u7406\u7684\u4e91\u8054\u7edc\u4e2d\u5fc3\u89e3\u51b3\u65b9\u6848\u3002\r\n\r\nCisco Webex Contact Center\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u6e90\u4e8eDesktop Agent\u529f\u80fd\u672a\u80fd\u6b63\u786e\u5904\u7406HTML\u548c\u811a\u672c\u5185\u5bb9\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u901a\u8fc7\u6076\u610f\u94fe\u63a5\u7a83\u53d6\u7528\u6237\u8eab\u4efd\u9a8c\u8bc1\u53ca\u4f1a\u8bdd\u4fe1\u606f\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cisco Webex Contact Center\u684c\u9762\u4ee3\u7406\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Cisco Cisco Webex Contact Center"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2026-20170",
  "serverity": "\u4e2d",
  "submitTime": "2026-04-16",
  "title": "Cisco Webex Contact Center\u684c\u9762\u4ee3\u7406\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e"
}

CVE-2026-20170 (GCVE-0-2026-20170)

Vulnerability from cvelistv5 – Published: 2026-04-15 16:10 – Updated: 2026-04-15 16:56

Summary

A vulnerability in the Desktop Agent functionality of Cisco Webex Contact Center could have allowed an unauthenticated, remote attacker to conduct cross-site scripting attacks. Cisco has addressed this vulnerability in the Cisco Webex Contact Center service, and no customer action is needed. This vulnerability existed because HTML and script content was not properly handled. Prior to this vulnerability being addressed, an attacker could have exploited this vulnerability by persuading a user to follow a malicious link. A successful exploit could have allowed the attacker to steal sensitive information from the browser, including authentication and session information.

Severity ?

6.1 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CWE

CWE-80 - Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)

Assigner

cisco

References

URL

Tags

https://sec.cloudapps.cisco.com/security/center/c…

Impacted products

	Vendor	Product	Version
	Cisco	Cisco Webex Contact Center	Affected: N/A

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-20170",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-04-15T16:42:50.336172Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-04-15T16:56:34.563Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Cisco Webex Contact Center",
          "vendor": "Cisco",
          "versions": [
            {
              "status": "affected",
              "version": "N/A"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability in the Desktop Agent functionality of Cisco Webex Contact Center could have allowed an unauthenticated, remote attacker to conduct cross-site scripting attacks. Cisco has addressed this vulnerability in the Cisco Webex Contact Center service, and no customer action is needed.\r\n\r This vulnerability existed because HTML and script content was not properly handled. Prior to this vulnerability being addressed, an attacker could have exploited this vulnerability by persuading a user to follow a malicious link. A successful exploit could have allowed the attacker to steal sensitive information from the browser, including authentication and session information."
        }
      ],
      "exploits": [
        {
          "lang": "en",
          "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "format": "cvssV3_1"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-80",
              "description": "Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)",
              "lang": "en",
              "type": "cwe"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-15T16:10:03.920Z",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "cisco-sa-webexcc-xss-WEX5nUnA",
          "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webexcc-xss-WEX5nUnA"
        }
      ],
      "source": {
        "advisory": "cisco-sa-webexcc-xss-WEX5nUnA",
        "defects": [
          "CSCwt50296"
        ],
        "discovery": "EXTERNAL"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2026-20170",
    "datePublished": "2026-04-15T16:10:03.920Z",
    "dateReserved": "2025-10-08T11:59:15.391Z",
    "dateUpdated": "2026-04-15T16:56:34.563Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2026-17802

CVE-2026-20170 (GCVE-0-2026-20170)

Tags

Sightings

Nomenclature