Avaya Aura Experience Portal 8.0.0

CPE Details

Avaya Aura Experience Portal 8.0.0
avaya
aura_experience_portal
8.0.0
2021-06-28
22h23 +00:00
2021-06-29
13h29 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:avaya:aura_experience_portal:8.0.0:*:*:*:*:*:*:*

Informations

Vendor

avaya

Product

aura_experience_portal

Version

8.0.0

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2023-7031 2024-01-17 18h34 +00:00 Insecure Direct Object Reference vulnerabilities were discovered in the Avaya Aura Experience Portal Manager which may allow partial information disclosure to an authenticated non-privileged user. Affected versions include 8.0.x and 8.1.x, prior to 8.1.2 patch 0402. Versions prior to 8.0 are end of manufacturer support.
5.7
Medium
CVE-2021-25656 2021-06-24 06h55 +00:00 Stored XSS injection vulnerabilities were discovered in the Avaya Aura Experience Portal Web management which could allow an authenticated user to potentially disclose sensitive information. Affected versions include 7.0 through 7.2.3 (without hotfix) and 8.0.0 (without hotfix).
5.4
Medium
CVE-2021-25655 2021-06-24 06h55 +00:00 A vulnerability in the system Service Menu component of Avaya Aura Experience Portal may allow URL Redirection to any untrusted site through a crafted attack. Affected versions include 7.0 through 7.2.3 (without hotfix) and 8.0.0 (without hotfix).
6.1
Medium