avaya
CVE Severity Distribution (All Time)
Timeline Overview
Recent CVEs
View allAn Improper access control vulnerability was found in Avaya Aura System Manager which could allow a command-line interface (CLI) user with administra…
A SQL injection vulnerability was found which could allow a command line interface (CLI) user with administrative privileges to execute arbitrary que…
An unrestricted file upload vulnerability in Avaya IP Office was discovered that could allow remote command or code execution via the One-X component…
An improper input validation vulnerability was discovered in Avaya IP Office that could allow remote command or code execution via a specially craft…
Insecure Direct Object Reference vulnerabilities were discovered in the Avaya Aura Experience Portal Manager which may allow partial information disc…
An OS command injection vulnerability was found in the Avaya Aura Device Services Web application which could allow remote code execution as the Web …
A CSV injection vulnerability was found in the Avaya Call Management System (CMS) Supervisor web application which allows a user with administrative …
Avaya IX Workforce Engagement v15.2.7.1195 - CWE-601: URL Redirection to Untrusted Site ('Open Redirect')
Avaya IX Workforce Engagement v15.2.7.1195 - CWE-522: Insufficiently Protected Credentials
Avaya IX Workforce Engagement v15.2.7.1195 - User Enumeration - Observable Response Discrepancy