Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The SIP Enablement Services (SES) Server in Avaya SIP Enablement Services 5.0, and Communication Manager (CM) 5.0 on the S8300C with SES enabled, writes account names and passwords to the (1) alarm and (2) system logs during failed login attempts, which allows local users to obtain login credentials by reading these logs.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Avaya SES 本地信息泄露漏洞
Vulnerability Description
Avaya是一家提供IP通信以及面向企业通信网络设计、建造、部署和管理的厂商。 S8300C上的Avaya SES 5.0和CM 5.0,当SES被激活时,SES服务会将登录失败的账户名和密码写入警报和系统日志中,这使得本地用户可以通过读取这些日志来获得相关用户信息。
CVSS Information
N/A
Vulnerability Type
N/A