7.5
CVE-2018-15617
- EPSS 0.38%
- Veröffentlicht 01.02.2019 15:29:00
- Zuletzt bearbeitet 21.11.2024 03:51:11
- Quelle securityalerts@avaya.com
- CVE-Watchlists
- Unerledigt
LoginA vulnerability in the "capro" (Call Processor) process component of Avaya Aura Communication Manager could allow a remote, unauthenticated user to cause denial of service. Affected versions include 6.3.x, all 7.x versions prior to 7.1.3.2, and all 8.x versions prior to 8.0.1.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Avaya ≫ Aura Communication Manager Version >= 6.3.0.1 <= 6.3.17.0
Avaya ≫ Aura Communication Manager Version >= 7.0 < 7.1.3.2
Avaya ≫ Aura Communication Manager Version >= 8.0 < 8.0.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.38% | 0.561 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:P
|
| securityalerts@avaya.com | 6.5 | 2.8 | 3.6 |
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|