Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aura vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-15616
A vulnerability in the Web UI component of Avaya Aura System Platform could allow a remote, unauthenticated user to perform a targeted deserialization attack that could result in remote code execution. Affected versions of System Platform includes 6.3.0 up to and including 6.3.9 ...
Avaya Avaya Aura System Platform
6.7
CVSSv3
CVE-2018-15611
A vulnerability in the local system administration component of Avaya Aura Communication Manager can allow an authenticated, privileged user on the local system to gain root privileges. Affected versions include 6.3.x and all 7.x version before 7.1.3.1.
Avaya Aura Communication Manager
8.8
CVSSv3
CVE-2018-15612
A CSRF vulnerability in the Runtime Config component of Avaya Aura Orchestration Designer could allow an malicious user to add, change, or remove administrative settings. Affected versions of Avaya Aura Orchestration Designer include all versions up to 7.2.1.
Avaya Orchestration Designer
6.1
CVSSv3
CVE-2018-15613
A cross-site scripting (XSS) vulnerability in the Runtime Config component of Avaya Aura Orchestration Designer could result in malicious content being returned to the user. Affected versions of Avaya Aura Orchestration Designer include all versions up to 7.2.1.
Avaya Aura Orchestration Designer
7.5
CVSSv3
CVE-2018-10705
The Owned smart contract implementation for Aurora DAO (AURA), an Ethereum ERC20 token, allows malicious users to acquire contract ownership because the setOwner function is declared as public. An attacker can then conduct a lockBalances() denial of service attack.
Auroradao Aura -
7.5
CVSSv3
CVE-2018-6635
System Manager in Avaya Aura prior to 7.1.2 does not properly use SSL in conjunction with authentication, which allows remote malicious users to bypass intended Remote Method Invocation (RMI) restrictions, aka SMGR-26896.
Avaya Aura
9.8
CVSSv3
CVE-2017-5358
Stack-based buffer overflows in php_Easycom5_3_0.dll in EasyCom for PHP 4.0.0.29 allows remote malicious users to execute arbitrary code via the server argument to the (1) i5_connect, (2) i5_pconnect, or (3) i5_private_connect API function.
Easycom-aura Easycom For Php 4.0.0.29
1 EDB exploit
7.5
CVSSv3
CVE-2017-5359
EasyCom SQL iPlug allows remote malicious users to cause a denial of service via the D$EVAL parameter to the default URI.
Easycom-aura Sql Iplug -
1 EDB exploit
NA
CVE-2011-5096
Stack-based buffer overflow in cstore.exe in the Media Application Server (MAS) in Avaya Aura Application Server 5300 (formerly Nortel Media Application Server) 1.x prior to 1.0.2 and 2.0 before Patch Bundle 10 allows remote malicious users to execute arbitrary code via a crafted...
Avaya Aura Application Server 5300 1.0
Avaya Aura Application Server 5300 2.0
NA
CVE-2011-1229
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges via a crafted application that triggers a...
Microsoft Windows 2003 Server -
Microsoft Windows 7 -
Microsoft Windows Server 2003 -
Microsoft Windows Server 2008 -
Microsoft Windows Server 2008 R2
Microsoft Windows Vista -
Microsoft Windows Xp -
Avaya Agent Access
Avaya Aura Conferencing Standard Edition 6.0.0
Avaya Basic Call Management System Reporting Desktop
Avaya Call Management Server Supervisor
Avaya Callpilot
Avaya Callvisor Asai Lan
Avaya Communication Server 1000 Telephony Manager
Avaya Computer Telephony
Avaya Contact Center Express
Avaya Customer Interaction Express
Avaya Enterprise Manager
Avaya Integrated Management
Avaya Interaction Center
Avaya Ip Agent
Avaya Ip Softphone
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »