Medium6.1Cisco Updated
Cisco Webex Contact Center Cross-Site Scripting Vulnerability
cisco-sa-webexcc-xss-WEX5nUnA Published Apr 15, 2026Updated by vendor Apr 15, 2026
CVE-2026-20170
Affected products & platforms
CiscoUnified CommunicationsWebex
Summary
A vulnerability in the Desktop Agent functionality of Cisco Webex Contact Center could have allowed an unauthenticated, remote attacker to conduct cross-site scripting attacks. Cisco has addressed this vulnerability in the Cisco Webex Contact Center service, and no customer action is needed.
Affected versions
- Scope: This vulnerability affected Cisco Webex Contact Center, which is cloud based.
Official advisory · high-confidence parse· fetched 1 day ago·verify at source
Mitigation checklist
Temporary workarounds
- There are no workarounds that address this vulnerability.
Official advisory · high-confidence parse· fetched 1 day ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.