9
CVE-2008-6710
- EPSS 2.1%
- Veröffentlicht 10.04.2009 22:00:00
- Zuletzt bearbeitet 16.06.2026 23:02:49
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Unspecified vulnerability in the Web administration interface in Avaya Communication Manager 3.1.x before CM 3.1.4 SP2 and 4.0.x before 4.0.3 SP1 allows remote authenticated administrators to gain root privileges via unknown vectors related to "configuring data viewing or restoring credentials."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Avaya ≫ Communication Manager Version3.1
Avaya ≫ Communication Manager Version3.1.1
Avaya ≫ Communication Manager Version3.1.2
Avaya ≫ Communication Manager Version3.1.3
Avaya ≫ Communication Manager Version4.0
Avaya ≫ Communication Manager Version4.0.1
Avaya ≫ Communication Manager Version4.0.1 Updatesp15215
Avaya ≫ Communication Manager Version4.0.1 Updatesp15500
Avaya ≫ Communication Manager Version4.0.2
Avaya ≫ Communication Manager Version4.0.2 Updatesp1
Avaya ≫ Communication Manager Version4.0.3
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.1% | 0.793 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9 | 8 | 10 |
AV:N/AC:L/Au:S/C:C/I:C/A:C
|
http://www.securityfocus.com/bid/29939
http://secunia.com/advisories/30799
http://support.avaya.com/elmodocs2/security/ASA-2008-270.htm
http://www.osvdb.org/46582
http://www.voipshield.com/research-details.php?id=79
http://www.vupen.com/english/advisories/2008/1944/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/43386