Avaya IP Office 11.0.4.2

CPE Details

Avaya IP Office 11.0.4.2
avaya
ip_office
11.0.4.2
2020-06-04
16h41 +00:00
2020-06-04
16h41 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:avaya:ip_office:11.0.4.2:*:*:*:*:*:*:*

Informations

Vendor

avaya

Product

ip_office

Version

11.0.4.2

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2024-4197 2024-06-25 04h01 +00:00 An unrestricted file upload vulnerability in Avaya IP Office was discovered that could allow remote command or code execution via the One-X component. Affected versions include all versions prior to 11.1.3.1.
9.9
Critical
CVE-2024-4196 2024-06-25 04h00 +00:00 An improper input validation vulnerability was discovered in Avaya IP Office that could allow remote command or code execution via a specially crafted web request to the Web Control component. Affected versions include all versions prior to 11.1.3.1.
10
Critical
CVE-2021-25657 2022-09-02 01h05 +00:00 A privilege escalation vulnerability was discovered in Avaya IP Office Admin Lite and USB Creator that may potentially allow a local user to escalate privileges. This issue affects Admin Lite and USB Creator 11.1 Feature Pack 2 Service Pack 1 and earlier versions.
7.8
High
CVE-2019-7005 2020-08-07 21h20 +00:00 A vulnerability was discovered in the web interface component of IP Office that may potentially allow a remote, unauthenticated user with network access to gain sensitive information. Affected versions of IP Office include: 9.x, 10.0 through 10.1.0.7 and 11.0 through 11.0.4.2.
7.5
High
CVE-2020-7030 2020-06-03 23h45 +00:00 A sensitive information disclosure vulnerability was discovered in the web interface component of IP Office that may potentially allow a local user to gain unauthorized access to the component. Affected versions of IP Office include: 9.x, 10.0 through 10.1.0.7 and 11.0 though 11.0.4.3.
5.5
Medium