CRITICAL🇵🇱 Wersja polska

CVE-2017-11309

CVSS 9.6v3.0pub. 2017-11-10upd. 2026-05-13

Buffer overflow in the SoftConsole client in Avaya IP Office before 10.1.1 allows remote servers to execute arbitrary code via a long response.

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
  • Avaya Ip Office

    APP
    Avaya
    < 10.1.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCEMemory
CWE
References

Related vulnerabilities

CVE-2024-4197CRITICAL9.9PL ✓ten sam produkt

Unrestricted file upload umożliwiający RCE w Avaya IP Office (One-X)

CVE-2024-4196CRITICAL10.0PL ✓ten sam produkt

RCE poprzez improper input validation w Avaya IP Office (Web Control)

CVE-2021-25657HIGH7.8ten sam produkt

A privilege escalation vulnerability was discovered in Avaya IP Office Admin Lite and USB Creator that may pot...

CVE-2019-7005HIGH7.5ten sam produkt

A vulnerability was discovered in the web interface component of IP Office that may potentially allow a remote...

CVE-2016-5285HIGH7.5ten sam produkt

A Null pointer dereference vulnerability exists in Mozilla Network Security Services due to a missing NULL che...