CVE-2018-15615

CMS Supervisor Information Disclosure

CVSS 7.2 HIGHEPSS 0.3%CWE-200

A vulnerability in the Supervisor component of Avaya Call Management System allows local administrative user to extract sensitive information from users connecting to a remote CMS host. Affected versions of CMS Supervisor include R17.0.x and R18.0.x.

CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H

Produtos afetados

Avaya · Call Management System Supervisor

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://downloads.avaya.com/css/P8/documents/101052300 http://www.securityfocus.com/bid/105392