7.5
CVE-2018-15617
- EPSS 0.38%
- Published 01.02.2019 15:29:00
- Last modified 21.11.2024 03:51:11
- Source securityalerts@avaya.com
- Teams watchlist Login
- Open Login
A vulnerability in the "capro" (Call Processor) process component of Avaya Aura Communication Manager could allow a remote, unauthenticated user to cause denial of service. Affected versions include 6.3.x, all 7.x versions prior to 7.1.3.2, and all 8.x versions prior to 8.0.1.
Data is provided by the National Vulnerability Database (NVD)
Avaya ≫ Aura Communication Manager Version >= 6.3.0.1 <= 6.3.17.0
Avaya ≫ Aura Communication Manager Version >= 7.0 < 7.1.3.2
Avaya ≫ Aura Communication Manager Version >= 8.0 < 8.0.1
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.38% | 0.561 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:P
|
| securityalerts@avaya.com | 6.5 | 2.8 | 3.6 |
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|