Buffer overflow in the SoftConsole client in Avaya IP Office before 10.1.1 allows remote servers to execute arbitrary code via a long response.
oryginał ENCVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:HAvaya Ip Office
APPAvaya< 10.1.1
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
RCEMemory
CWE
Referencje
Powiązane podatności
CVE-2024-4197CRITICAL9.9PL ✓ten sam produkt
Unrestricted file upload umożliwiający RCE w Avaya IP Office (One-X)
CVE-2024-4196CRITICAL10.0PL ✓ten sam produkt
RCE poprzez improper input validation w Avaya IP Office (Web Control)
CVE-2021-25657HIGH7.8ten sam produkt
A privilege escalation vulnerability was discovered in Avaya IP Office Admin Lite and USB Creator that may pot...
CVE-2019-7005HIGH7.5ten sam produkt
A vulnerability was discovered in the web interface component of IP Office that may potentially allow a remote...
CVE-2016-5285HIGH7.5ten sam produkt
A Null pointer dereference vulnerability exists in Mozilla Network Security Services due to a missing NULL che...