Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
communication manager vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-2249
Privilege escalation related vulnerabilities were discovered in Avaya Aura Communication Manager that may allow local administrative users to escalate their privileges. This issue affects Communication Manager versions 8.0.0.0 up to and including 8.1.3.3 and 10.1.0.0.
Avaya Aura Communication Manager 10.1.0.0
Avaya Aura Communication Manager
6
CVSSv2
CVE-2007-1490
Unspecified maintenance web pages in Avaya S87XX, S8500, and S8300 before CM 3.1.3, and Avaya SES allow remote authenticated users to execute arbitrary commands via shell metacharacters in unspecified vectors (aka "shell command injection").
Avaya Communication Manager
7.2
CVSSv2
CVE-2018-15611
A vulnerability in the local system administration component of Avaya Aura Communication Manager can allow an authenticated, privileged user on the local system to gain root privileges. Affected versions include 6.3.x and all 7.x version before 7.1.3.1.
Avaya Aura Communication Manager
5
CVSSv2
CVE-2018-15617
A vulnerability in the "capro" (Call Processor) process component of Avaya Aura Communication Manager could allow a remote, unauthenticated user to cause denial of service. Affected versions include 6.3.x, all 7.x versions before 7.1.3.2, and all 8.x versions before 8.0...
Avaya Aura Communication Manager
7.2
CVSSv2
CVE-2022-25153
The ITarian Endpoint Manage Communication Client, prior to version 6.43.41148.21120, is compiled using insecure OpenSSL settings. Due to this setting, a malicious actor with low privileges access to a system can escalate his privileges to SYSTEM abusing an insecure openssl.conf l...
Itarian Endpoint Manager Communication Client
6.8
CVSSv2
CVE-2020-7029
A Cross-Site Request Forgery (CSRF) vulnerability exists in the System Management Interface Web component of Avaya Aura Communication Manager and Avaya Aura Messaging. This vulnerability could allow an unauthenticated remote malicious user to perform Web administration actions wi...
Avaya Aura Communication Manager
Avaya Aura Messaging
Avaya Aura Messaging 7.1
4
CVSSv2
CVE-2015-6410
The Mobile and Remote Access (MRA) services implementation in Cisco Unified Communications Manager mishandles edge-device identity validation, which allows remote malicious users to bypass intended call-reception and call-setup restrictions by spoofing a user, aka Bug ID CSCuu972...
Cisco Telepresence Video Communication Server Software X8.5
7.8
CVSSv2
CVE-2008-5872
Multiple unspecified vulnerabilities in the UNIStim File Transfer Protocol (UFTP) processing in IP Client Manager (IPCM) in Nortel Multimedia Communication Server (MSC) 5100 3.0.13 allow remote malicious users to cause a denial of service (device outage) via a UFTP message that h...
Nortel Multimedia Communication Server 5100 3.0.13
5
CVSSv2
CVE-2018-0409
A vulnerability in the XCP Router service of the Cisco Unified Communications Manager IM & Presence Service (CUCM IM&P) and the Cisco TelePresence Video Communication Server (VCS) and Expressway could allow an unauthenticated, remote malicious user to cause a temporary se...
Cisco Telepresence Video Communication Server X8.1
Cisco Telepresence Video Communication Server X8.10
Cisco Telepresence Video Communication Server X8.10.4
Cisco Telepresence Video Communication Server X8.2.2
Cisco Telepresence Video Communication Server X7.0.1
Cisco Telepresence Video Communication Server X8.6
Cisco Telepresence Video Communication Server X8.8
Cisco Telepresence Video Communication Server X8.9
Cisco Telepresence Video Communication Server X7.2.4
Cisco Telepresence Video Communication Server X8.5
Cisco Telepresence Video Communication Server X8.7
Cisco Unified Communications Manager Im And Presence Service 11.5
Cisco Unified Communications Manager Im And Presence Service 11.5\\(1\\)
7.5
CVSSv2
CVE-2004-1082
mod_digest_apple for Apache 1.3.31 and 1.3.32 on Mac OS X Server does not properly verify the nonce of a client response, which allows remote malicious users to replay credentials.
Apache Http Server 1.3.12
Apache Http Server 1.3.14
Apache Http Server 1.3.24
Apache Http Server 1.3.25
Apache Http Server 1.3.6
Apache Http Server 1.3.7
Apache Http Server 1.3.9
Hp Virtualvault 4.5
Hp Virtualvault 4.6
Apache Http Server 1.3
Apache Http Server 1.3.19
Apache Http Server 1.3.20
Apache Http Server 1.3.28
Apache Http Server 1.3.29
Avaya Communication Manager 1.3.1
Avaya Communication Manager 2.0
Hp Webproxy A.02.10
Ibm Http Server 1.3.19
Apache Http Server 1.3.17
Apache Http Server 1.3.18
Apache Http Server 1.3.26
Apache Http Server 1.3.27
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »