HIGH🇵🇱 Wersja polska

CVE-2021-25657

CVSS 7.8v3.1pub. 2022-09-02upd. 2024-11-21

A privilege escalation vulnerability was discovered in Avaya IP Office Admin Lite and USB Creator that may potentially allow a local user to escalate privileges. This issue affects Admin Lite and USB Creator 11.1 Feature Pack 2 Service Pack 1 and earlier versions.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Avaya Ip Office

    APP
    Avaya
    11.1< 11.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
LPE
CWE
References

Related vulnerabilities

CVE-2024-4196CRITICAL10.0PL ✓ten sam produkt

RCE poprzez improper input validation w Avaya IP Office (Web Control)

CVE-2024-4197CRITICAL9.9PL ✓ten sam produkt

Unrestricted file upload umożliwiający RCE w Avaya IP Office (One-X)

CVE-2017-11309CRITICAL9.6ten sam produkt

Buffer overflow in the SoftConsole client in Avaya IP Office before 10.1.1 allows remote servers to execute ar...

CVE-2019-7005HIGH7.5ten sam produkt

A vulnerability was discovered in the web interface component of IP Office that may potentially allow a remote...

CVE-2016-5285HIGH7.5ten sam produkt

A Null pointer dereference vulnerability exists in Mozilla Network Security Services due to a missing NULL che...