Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
avaya vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2008-3081
Multiple unspecified "input validation" vulnerabilities in the Web management interface (aka Messaging Administration interface) in Avaya Message Storage Server (MSS) 3.x and 4.0, and possibly Communication Manager 3.1.x, allow remote authenticated administrators to exe...
Avaya Messaging Storage Server 3.1
Avaya Messaging Storage Server 4.0
Avaya Messaging Storage Server 3
7.8
CVSSv2
CVE-2007-5830
Unspecified vulnerability in the administrative interface in Avaya Messaging Storage Server (MSS) 3.1 before SP1, and Message Networking (MN) 3.1, allows remote malicious users to cause a denial of service via unspecified vectors related to "input validation."
Avaya Message Networking 3.1
Avaya Messaging Storage Server 3.1
7.8
CVSSv2
CVE-2007-5556
Unspecified vulnerability in the Avaya VoIP Handset allows remote malicious users to cause a denial of service (reboot) via crafted packets. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known re...
Avaya Voip Handset
6.8
CVSSv2
CVE-2007-3286
Multiple buffer overflows in unspecified ActiveX controls in COM objects in Avaya IP Softphone R5.2 before SP3, and R6.0, allow remote malicious users to execute arbitrary code via unspecified vectors.
Avaya Ip Soft Phone 6.0
Avaya Ip Soft Phone
5
CVSSv2
CVE-2007-3321
The Avaya 4602 SW IP Phone (Model 4602D02A) with 2.2.2 and previous versions SIP firmware allows remote malicious users to cause a denial of service (device reboot) via a flood of packets to the BOOTP port (68/udp).
Avaya 4602sw Ip Phone
7.8
CVSSv2
CVE-2007-3317
The Session Initiation Protocol (SIP) User Access Client (UAC) message parsing module in Avaya one-X Desktop Edition 2.1.0.70 and previous versions allows remote malicious users to cause a denial of service (device crash) via a malformed SIP message.
Avaya One-x
5
CVSSv2
CVE-2007-3320
The Avaya 4602SW IP Phone (Model 4602D02A) with 2.2.2 and previous versions SIP firmware accepts SIP INVITE requests from arbitrary source IP addresses, which allows remote malicious users to have an unspecified impact.
Avaya 4602sw Ip Phone
5
CVSSv2
CVE-2007-3322
The Avaya 4602 SW IP Phone (Model 4602D02A) with 2.2.2 and previous versions SIP firmware uses a constant media port number for calls, which allows remote malicious users to cause a denial of service (audio quality loss) via a flood of packets to the RTP port.
Avaya 4602sw Ip Phone
5
CVSSv2
CVE-2007-3318
Buffer overflow in the Session Initiation Protocol (SIP) User Access Client (UAC) message parsing module in Avaya one-X Desktop Edition 2.1.0.70 and previous versions allows remote malicious users to cause a denial of service (call reception outage) via a malformed SIP message.
Avaya One-x
7.5
CVSSv2
CVE-2007-3319
The Avaya 4602SW IP Phone (Model 4602D02A) with 2.2.2 and previous versions SIP firmware does not use the cnonce parameter in the Authorization header of SIP requests during MD5 digest authentication, which allows remote malicious users to conduct man-in-the-middle attacks and hi...
Avaya 4602sw Ip Phone R2.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »