Avaya Aura Experience Portal 7.1

CPE Details

Avaya Aura Experience Portal 7.1
avaya
aura_experience_portal
7.1
2019-11-20
18h19 +00:00
2021-03-04
13h27 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:avaya:aura_experience_portal:7.1:*:*:*:*:*:*:*

Informations

Vendor

avaya

Product

aura_experience_portal

Version

7.1

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2021-25656 2021-06-24 06h55 +00:00 Stored XSS injection vulnerabilities were discovered in the Avaya Aura Experience Portal Web management which could allow an authenticated user to potentially disclose sensitive information. Affected versions include 7.0 through 7.2.3 (without hotfix) and 8.0.0 (without hotfix).
5.4
Medium
CVE-2021-25655 2021-06-24 06h55 +00:00 A vulnerability in the system Service Menu component of Avaya Aura Experience Portal may allow URL Redirection to any untrusted site through a crafted attack. Affected versions include 7.0 through 7.2.3 (without hotfix) and 8.0.0 (without hotfix).
6.1
Medium
CVE-2016-5285 2019-11-15 14h44 +00:00 A Null pointer dereference vulnerability exists in Mozilla Network Security Services due to a missing NULL check in PK11_SignWithSymKey / ssl3_ComputeRecordMACConstantTime, which could let a remote malicious user cause a Denial of Service.
7.5
High