浏览 47+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-1041 | Avaya Call Management System RCE vulnerability | Avaya | Avaya Call Management System | Critical | 9.9 | 2025-06-10 06:05:26 | Deep Dive |
| CVE-2024-12756 | Avaya Spaces HTML injection (HTMLi) Vulnerability | Avaya | Avaya Spaces | High | 7.3 | 2025-02-11 16:59:13 | Deep Dive |
| CVE-2024-12755 | Avaya Spaces XSS Vulnerability | Avaya | Avaya Spaces | High | 7.9 | 2025-02-11 16:57:08 | Deep Dive |
| CVE-2024-7480 | Improper access control in Avaya Aura System Manager | Avaya | Aura System Manager | Medium | 4.2 | 2024-08-08 16:04:26 | Deep Dive |
| CVE-2024-7477 | Avaya Aura System Manager SQL injection vulnerability | Avaya | Aura System Manager | Medium | 6.5 | 2024-08-08 16:02:43 | Deep Dive |
| CVE-2024-4197 | Avaya IP Office One-X Portal File Upload Vulnerability | Avaya | IP Office | Critical | 9.9 | 2024-06-25 04:01:18 | Deep Dive |
| CVE-2024-4196 | Avaya IP Office Web Control RCE Vulnerability | Avaya | IP Office | Critical | 10.0 | 2024-06-25 04:00:30 | Deep Dive |
| CVE-2023-7031 | Avaya Experience Portal Manager Insecure Direct Object Reference Vulnerabilities | Avaya | Experience Portal Manager | Medium | 5.7 | 2024-01-17 18:34:42 | Deep Dive |
| CVE-2023-3722 | Avaya Aura Device Services Remote Code Execution | Avaya | Aura Device Services | High | 8.6 | 2023-07-19 19:56:53 | Deep Dive |
| CVE-2023-3527 | Avaya Call Management System CSV injection vulnerability | Avaya | Avaya Call Management System | Medium | 6.8 | 2023-07-18 21:10:37 | Deep Dive |
| CVE-2023-31187 | Avaya IX Workforce Engagement - CWE-522: Insufficiently Protected Credentials | Avaya | IX Workforce Engagement | Medium | 6.5 | 2023-05-30 00:00:00 | Deep Dive |
| CVE-2023-31186 | Avaya IX Workforce Engagement - User Enumeration - CWE-204: Observable Response Discrepancy | Avaya | IX Workforce Engagement | Medium | 5.3 | 2023-05-30 00:00:00 | Deep Dive |
| CVE-2023-32218 | Avaya IX Workforce Engagement - CWE-601: URL Redirection to Untrusted Site ('Open Redirect') | Avaya | IX Workforce Engagement | Medium | 6.1 | 2023-05-30 00:00:00 | Deep Dive |
| CVE-2022-2249 | Avaya Aura Communication Manager Privilege Escalation Vulnerabilities | Avaya | Avaya Aura Communication Manager | High | 7.7 | 2022-10-12 00:00:00 | Deep Dive |
| CVE-2022-2975 | Avaya Aura Application Enablement Services weak permissions in web application | Avaya | Avaya Aura Application Enablement Services | High | 7.7 | 2022-10-06 00:00:00 | Deep Dive |
| CVE-2021-25657 | Avaya IP Office Privilege Escalation Vulnerability | Avaya | IP Office | High | 7.8 | 2022-09-02 01:05:09 | Deep Dive |
| CVE-2021-25654 | Avaya Aura Device Services Arbitrary Code Execution Vulnerability | Avaya | Avaya Aura Devices Services | Medium | 6.2 | 2021-06-25 20:15:12 | Deep Dive |
| CVE-2021-25656 | Avaya Aura Experience Portal XSS vulnerabilities | Avaya | Product | Medium | 5.3 | 2021-06-24 08:55:32 | Deep Dive |
| CVE-2021-25655 | URL redirection to untrusted site possible in Avaya Aura Experience Portal | Avaya | Avaya Experience Portal | Medium | 4.4 | 2021-06-24 08:55:31 | Deep Dive |
| CVE-2021-25653 | Avaya Aura Appliance Virtualization Platform Utilities Privilege Escalation Vulnerability | Avaya | Avaya Aura Appliance Virtualization Platform Utilities | High | 8.0 | 2021-06-24 08:55:29 | Deep Dive |