{"vulnerability": "CVE-2024-20305", "sightings": [{"uuid": "5a72bb1a-5d09-4d0f-b2d2-18f41a9c317a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-20305", "type": "seen", "source": "https://t.me/arpsyndicate/3279", "content": "#ExploitObserverAlert\n\nCVE-2024-20305\n\nDESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2024-20305. A vulnerability in the web-based management interface of Cisco Unity Connection could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability exists because the web-based management interface does not properly validate user-supplied input. An attacker could exploit this vulnerability by persuading a user of the interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information.", "creation_timestamp": "2024-01-28T11:25:01.000000Z"}, {"uuid": "2e637208-0ff4-41db-854c-8f233ca88702", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-20305", "type": "seen", "source": "https://t.me/ctinow/174424", "content": "https://ift.tt/xNJVioI\nCVE-2024-20305", "creation_timestamp": "2024-01-26T19:31:52.000000Z"}, {"uuid": "910ca8b9-5045-48c9-b87e-6c0fd468f208", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-20305", "type": "seen", "source": "https://t.me/ctinow/187185", "content": "https://ift.tt/KrziCAk\nCVE-2024-20305 | Cisco Unity Connection Web-based Management Interface cross site scripting (cisco-sa-cuc-xss-9TFuu5MS)", "creation_timestamp": "2024-02-18T09:11:56.000000Z"}]}