Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
call management system vulnerabilities and exploits
(subscribe to this query)
4.4
CVSSv3
CVE-2018-15615
A vulnerability in the Supervisor component of Avaya Call Management System allows local administrative user to extract sensitive information from users connecting to a remote CMS host. Affected versions of CMS Supervisor include R17.0.x and R18.0.x.
Avaya Call Management System Supervisor 18.0.1.0
Avaya Call Management System Supervisor 18.0.2.0
Avaya Call Management System Supervisor 17.0.0
NA
CVE-2004-0800
Format string vulnerability in CDE Mailer (dtmail) on Solaris 8 and 9 allows local users to gain privileges via format strings in the argv[0] value.
Avaya Call Management System Server 11.0
Sun Dtmail
Avaya Call Management System Server 12.0
Avaya Call Management System Server 9.0
Sun Solaris 9.0
Sun Solaris 8.0
Sun Sunos 5.8
6.8
CVSSv3
CVE-2023-3527
A CSV injection vulnerability was found in the Avaya Call Management System (CMS) Supervisor web application which allows a user with administrative privileges to input crafted data which, when exported to a CSV file, may attempt arbitrary command execution on the system used to ...
Avaya Call Management System
6.5
CVSSv3
CVE-2023-34134
Exposure of sensitive information to an unauthorized actor vulnerability in SonicWall GMS and Analytics allows authenticated malicious user to read administrator password hash via a web service call. This issue affects GMS: 9.3.2-SP1 and previous versions versions; Analytics: 2.5...
Sonicwall Global Management System
Sonicwall Analytics
Sonicwall Global Management System 9.3.2
NA
CVE-2004-1307
Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote malicious users to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to be allocated and leads to a ...
Avaya Call Management System Server 13.0
Avaya Call Management System Server 8.0
F5 Icontrol Service Manager 1.3
F5 Icontrol Service Manager 1.3.4
Libtiff Libtiff 3.5.4
Libtiff Libtiff 3.5.5
Conectiva Linux 9.0
Avaya Call Management System Server 11.0
Avaya Call Management System Server 12.0
Avaya Interactive Response 1.3
Avaya Intuity Audix Lx
Libtiff Libtiff 3.5.2
Libtiff Libtiff 3.5.3
Sgi Propack 3.0
Conectiva Linux 10.0
Avaya Integrated Management
Avaya Interactive Response
Avaya Interactive Response 1.2.1
Libtiff Libtiff 3.4
Libtiff Libtiff 3.5.1
Libtiff Libtiff 3.6.1
Libtiff Libtiff 3.7.0
NA
CVE-2013-3599
userlogin.jsp in Coursemill Learning Management System (LMS) 6.6 and 6.8 allows remote malicious users to gain privileges via a modified user-role value to home.html.
Trivantis Coursemill Learning Management System 6.8
Trivantis Coursemill Learning Management System 6.6
9.8
CVSSv3
CVE-2020-27481
An unauthenticated SQL Injection vulnerability in Good Layers LMS Plugin <= 2.1.4 exists due to the usage of "wp_ajax_nopriv" call in WordPress, which allows any unauthenticated user to get access to the function "gdlr_lms_cancel_booking" where POST Paramet...
Goodlayers Good Learning Management System
8.8
CVSSv3
CVE-2021-27273
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of NETGEAR ProSAFE Network Management System 1.6.0.26. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. Th...
Netgear Prosafe Network Management System 1.6.0.26
NA
CVE-2013-3576
ginkgosnmp.inc in HP System Management Homepage (SMH) allows remote authenticated users to execute arbitrary commands via shell metacharacters in the PATH_INFO to smhutil/snmpchp.php.en.
Hp System Management Homepage
1 EDB exploit
NA
CVE-2013-3600
Coursemill Learning Management System (LMS) 6.6 allows remote authenticated users to gain privileges via a modified userid value to unspecified functions.
Trivantis Coursemill Learning Management System 6.6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »