Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
avaya vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2007-1765
Unspecified vulnerability in Microsoft Windows 2000 SP4 through Vista allows remote malicious users to execute arbitrary code or cause a denial of service (persistent reboot) via a malformed ANI file, which results in memory corruption when processing cursors, animated cursors, a...
Microsoft Windows Vista
Microsoft Windows 2000
Microsoft Windows Xp
Microsoft Windows 2003 Server -
Microsoft Windows 2000 -
Avaya Definity One Media Server
Avaya S8100
Avaya Ip600 Media Servers
Microsoft Ie 7.0
Avaya S3400
Microsoft Internet Explorer
11 EDB exploits
1 Article
7.8
CVSSv2
CVE-2005-3989
Memory leak in Avaya TN2602AP IP Media Resource 320 circuit pack before vintage 9 firmware allows remote malicious users to cause a denial of service (memory consumption) via crafted VoIP packets.
Avaya Tn2602ap Ip Media Resource 320 Circuit Pack Vintage 5 Firmware
Avaya Tn2602ap Ip Media Resource 320 Circuit Pack Vintage 4 Firmware
Avaya Tn2602ap Ip Media Resource 320 Circuit Pack Vintage 7 Firmware
Avaya Tn2602ap Ip Media Resource 320 Circuit Pack
Avaya Tn2602ap Ip Media Resource 320 Circuit Pack Vintage 3 Firmware
Avaya Tn2602ap Ip Media Resource 320 Circuit Pack Vintage 6 Firmware
10
CVSSv2
CVE-2012-3811
Unrestricted file upload vulnerability in ImageUpload.ashx in the Wallboard application in Avaya IP Office Customer Call Reporter 7.0 prior to 7.0.5.8 Q1 2012 Maintenance Release and 8.0 prior to 8.0.9.13 Q1 2012 Maintenance Release allows remote malicious users to execute arbitr...
Avaya Ip Office Customer Call Reporter 7.0
Avaya Ip Office Customer Call Reporter 8.0
1 EDB exploit
NA
CVE-2022-38168
Broken Access Control in User Authentication in Avaya Scopia Pathfinder 10 and 20 PTS version 8.3.7.0.4 allows remote unauthenticated malicious users to bypass the login page, access sensitive information, and reset user passwords via URL modification.
Avaya Scopia Pathfinder 10 Pts Firmware 8.3.7.0.4
Avaya Scopia Pathfinder 20 Pts Firmware 8.3.7.0.4
6
CVSSv2
CVE-2018-6635
System Manager in Avaya Aura prior to 7.1.2 does not properly use SSL in conjunction with authentication, which allows remote malicious users to bypass intended Remote Method Invocation (RMI) restrictions, aka SMGR-26896.
Avaya Aura
4.6
CVSSv2
CVE-2004-0800
Format string vulnerability in CDE Mailer (dtmail) on Solaris 8 and 9 allows local users to gain privileges via format strings in the argv[0] value.
Sun Dtmail
Avaya Call Management System Server 9.0
Avaya Call Management System Server 11.0
Avaya Call Management System Server 12.0
Sun Sunos 5.8
Sun Solaris 9.0
Sun Solaris 8.0
6.8
CVSSv2
CVE-2018-15612
A CSRF vulnerability in the Runtime Config component of Avaya Aura Orchestration Designer could allow an malicious user to add, change, or remove administrative settings. Affected versions of Avaya Aura Orchestration Designer include all versions up to 7.2.1.
Avaya Orchestration Designer
3.5
CVSSv2
CVE-2020-7033
A Cross Site Scripting (XSS) Vulnerability on the Unified Portal Client (web client) used in Avaya Equinox Conferencing can allow an authenticated user to perform XSS attacks. The affected versions of Equinox Conferencing includes all 9.x versions prior to 9.1.10.
Avaya Equinox Conferencing
5
CVSSv2
CVE-2020-7038
A vulnerability exists in Management component of Avaya Equinox Conferencing that could potentially allow an unauthenticated, remote malicious user to gain access to screen sharing and whiteboard sessions. The affected versions of Management component of Avaya Equinox Conferencin...
Avaya Equinox Conferencing
6.4
CVSSv2
CVE-2019-7003
A SQL injection vulnerability in the reporting component of Avaya Control Manager could allow an unauthenticated malicious user to execute arbitrary SQL commands and retrieve sensitive data related to other users on the system. Affected versions of Avaya Control Manager include 7...
Avaya Control Manager
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »