Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
avaya vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2018-15616
A vulnerability in the Web UI component of Avaya Aura System Platform could allow a remote, unauthenticated user to perform a targeted deserialization attack that could result in remote code execution. Affected versions of System Platform includes 6.3.0 up to and including 6.3.9 ...
Avaya Avaya Aura System Platform
668
VMScore
CVE-2008-6574
Unspecified vulnerability in SIP Enablement Services (SES) in Avaya Communication Manager 3.1.x and 4.x allows remote malicious users to gain privileges and cause a denial of service via unknown vectors related to reuse of valid credentials.
Avaya Communication Manager 3.1
Avaya Communication Manager 3.1.1
Avaya Communication Manager 4.0
Avaya Communication Manager 4.0.1
Avaya Communication Manager 3.1.4
Avaya Communication Manager 4.0.3
Avaya Communication Manager 3.1.5
Avaya Communication Manager 3.1.2
Avaya Communication Manager 3.1.3
668
VMScore
CVE-2008-5882
SQL injection vulnerability in login.asp in Citrix Application Gateway - Broadcast Server (BCS) prior to 6.1, as used by Avaya AG250 - Broadcast Server prior to 2.0 and possibly other products, allows remote malicious users to execute arbitrary SQL commands via the txtUID paramet...
Citrix Broadcast Server
Avaya Broadcast Server
668
VMScore
CVE-2008-3778
The remote management interface in SIP Enablement Services (SES) Server in Avaya SIP Enablement Services 5.0, and Communication Manager (CM) 5.0 on the S8300C with SES enabled, proceeds with Core router updates even when a login is invalid, which allows remote malicious users to ...
Avaya Sip Enablement Services 5.0
Avaya Communication Manager 5.0
668
VMScore
CVE-2007-3319
The Avaya 4602SW IP Phone (Model 4602D02A) with 2.2.2 and previous versions SIP firmware does not use the cnonce parameter in the Authorization header of SIP requests during MD5 digest authentication, which allows remote malicious users to conduct man-in-the-middle attacks and hi...
Avaya 4602sw Ip Phone R2.2
668
VMScore
CVE-2005-3253
Wireless Access Points (AP) for (1) Avaya AP-3 through AP-6 2.5 to 2.5.4, and AP-7/AP-8 2.5 and other versions prior to 3.1, and (2) Proxim AP-600 and AP-2000 prior to 2.5.5, and Proxim AP-700 and AP-4000 after 2.4.11 and prior to 3.1, use a static WEP key of "12345", w...
Avaya Wireless Ap-3 2.5.4
Avaya Wireless Ap-4 2.5
Avaya Wireless Ap-8 2.5
Avaya Wireless Ap-5 2.5.4
Avaya Wireless Ap-6 2.5
Avaya Wireless Ap-4 2.5.4
Avaya Wireless Ap-5 2.5
Avaya Wireless Ap-3 2.5
Avaya Wireless Ap-6 2.5.4
Avaya Wireless Ap-7 2.5
Proxim Ap-600 2.5.4
Proxim Ap-700 2.4.12
Proxim Ap-2000 2.5.4
Proxim Ap-4000 2.4.12
Proxim Ap-4000 3.0
Proxim Ap-700 3.0
668
VMScore
CVE-2004-1307
Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote malicious users to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to be allocated and leads to a ...
Avaya Call Management System Server 13.0
Avaya Call Management System Server 8.0
F5 Icontrol Service Manager 1.3
F5 Icontrol Service Manager 1.3.4
Libtiff Libtiff 3.5.4
Libtiff Libtiff 3.5.5
Conectiva Linux 9.0
Avaya Call Management System Server 11.0
Avaya Call Management System Server 12.0
Avaya Interactive Response 1.3
Avaya Intuity Audix Lx
Libtiff Libtiff 3.5.2
Libtiff Libtiff 3.5.3
Sgi Propack 3.0
Conectiva Linux 10.0
Avaya Integrated Management
Avaya Interactive Response
Avaya Interactive Response 1.2.1
Libtiff Libtiff 3.4
Libtiff Libtiff 3.5.1
Libtiff Libtiff 3.6.1
Libtiff Libtiff 3.7.0
668
VMScore
CVE-2004-0494
Multiple extfs backend scripts for GNOME virtual file system (VFS) prior to 1.0.1 may allow remote malicious users to perform certain unauthorized actions via a gnome-vfs URI.
Avaya Cvlan
Redhat Enterprise Linux 2.1
Redhat Enterprise Linux 3.0
Redhat Enterprise Linux Desktop 3.0
Redhat Linux Advanced Workstation 2.1
668
VMScore
CVE-2004-1082
mod_digest_apple for Apache 1.3.31 and 1.3.32 on Mac OS X Server does not properly verify the nonce of a client response, which allows remote malicious users to replay credentials.
Apache Http Server 1.3.12
Apache Http Server 1.3.14
Apache Http Server 1.3.24
Apache Http Server 1.3.25
Apache Http Server 1.3.6
Apache Http Server 1.3.7
Apache Http Server 1.3.9
Hp Virtualvault 4.5
Hp Virtualvault 4.6
Apache Http Server 1.3
Apache Http Server 1.3.19
Apache Http Server 1.3.20
Apache Http Server 1.3.28
Apache Http Server 1.3.29
Avaya Communication Manager 1.3.1
Avaya Communication Manager 2.0
Hp Webproxy A.02.10
Ibm Http Server 1.3.19
Apache Http Server 1.3.17
Apache Http Server 1.3.18
Apache Http Server 1.3.26
Apache Http Server 1.3.27
668
VMScore
CVE-2002-1229
Avaya Cajun switches P880, P882, P580, and P550R 5.2.14 and previous versions contain undocumented accounts (1) manuf and (2) diag with default passwords, which allows remote malicious users to gain privileges.
Avaya Cajun P580 5.2.14
Avaya Cajun P880 5.2.14
Avaya Cajun P550 4.3.5
Avaya Cajun P550r 5.2.14
Avaya Cajun P882 5.2.14
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3201
CVE-2024-4779
CVE-2024-35090
CVE-2024-5084
hard-coded
CVE-2024-4985
HTML injection
CVE-2024-33655
local file inclusion
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »