CPE-3D07126C-BCF5-4901-8751-F05D14A66651 Detail

CPE Details

Avaya IP Office 10.0 Service Pack 7

Vendor

avaya

Product

ip_office

Version

10.0

Created

2019-10-04
12h22 +00:00

Modified

2019-10-04
12h22 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:avaya:ip_office:10.0:sp7::::::

Informations

Vendor

avaya

Product

ip_office

Version

10.0

Update

sp7

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2024-4197	2024-06-25 04h01 +00:00	An unrestricted file upload vulnerability in Avaya IP Office was discovered that could allow remote command or code execution via the One-X component. Affected versions include all versions prior to 11.1.3.1.	9.9	Critical
CVE-2024-4196	2024-06-25 04h00 +00:00	An improper input validation vulnerability was discovered in Avaya IP Office that could allow remote command or code execution via a specially crafted web request to the Web Control component. Affected versions include all versions prior to 11.1.3.1.	10	Critical
CVE-2021-25657	2022-09-02 01h05 +00:00	A privilege escalation vulnerability was discovered in Avaya IP Office Admin Lite and USB Creator that may potentially allow a local user to escalate privileges. This issue affects Admin Lite and USB Creator 11.1 Feature Pack 2 Service Pack 1 and earlier versions.	7.8	High
CVE-2019-7005	2020-08-07 21h20 +00:00	A vulnerability was discovered in the web interface component of IP Office that may potentially allow a remote, unauthenticated user with network access to gain sensitive information. Affected versions of IP Office include: 9.x, 10.0 through 10.1.0.7 and 11.0 through 11.0.4.2.	7.5	High
CVE-2020-7030	2020-06-03 23h45 +00:00	A sensitive information disclosure vulnerability was discovered in the web interface component of IP Office that may potentially allow a local user to gain unauthorized access to the component. Affected versions of IP Office include: 9.x, 10.0 through 10.1.0.7 and 11.0 though 11.0.4.3.	5.5	Medium
CVE-2016-5285	2019-11-15 14h44 +00:00	A Null pointer dereference vulnerability exists in Mozilla Network Security Services due to a missing NULL check in PK11_SignWithSymKey / ssl3_ComputeRecordMACConstantTime, which could let a remote malicious user cause a Denial of Service.	7.5	High
CVE-2018-15614	2019-01-23 16h00 +00:00	A vulnerability in the one-x Portal component of IP Office could allow an authenticated user to perform stored cross site scripting attacks via fields in the Conference Scheduler Service that could affect other application users. Affected versions of IP Office include 10.0 through 10.1 SP3 and 11.0 versions prior to 11.0 SP1.	6.8	Medium
CVE-2018-15610	2018-09-12 19h00 +00:00	A vulnerability in the one-X Portal component of Avaya IP Office allows an authenticated attacker to read and delete arbitrary files on the system. Affected versions of Avaya IP Office include 9.1 through 9.1 SP12, 10.0 through 10.0 SP7, and 10.1 through 10.1 SP2.	8.8	High
CVE-2017-11309	2017-11-09 18h00 +00:00	Buffer overflow in the SoftConsole client in Avaya IP Office before 10.1.1 allows remote servers to execute arbitrary code via a long response.	9.6	Critical

Avaya IP Office 10.0 Service Pack 7

CPE Details

CPE Name: cpe:2.3:a:avaya:ip_office:10.0:sp7:*:*:*:*:*:*

Informations

Vendor

Product

Version

Update

Related CVE

CPE Name: cpe:2.3:a:avaya:ip_office:10.0:sp7::::::