Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Avaya — Vulnerabilities & Security Advisories 47

Browse all 47 CVE security advisories affecting Avaya. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by Avaya:IP OfficeIX Workforce EngagementAvaya Aura Utility ServicesCommunication ManagerAvaya SpacesAura System ManagerAvaya Call Management SystemAvaya Aura Appliance Virtualization Platform UtilitiesAvaya Aura Communication ManagerOrchestration DesignerIP Office Contact CenterCall Management System SupervisorExperience Portal ManagerAura Device ServicesAvaya Aura® System PlatformAvaya Aura ConferencingAvaya Aura Application Enablement ServicesProductAvaya Experience PortalAvaya Aura Devices ServicesEquinox Conferencing Management (iView)Avaya Control ManagerAvaya Meetings ManagementAvaya Meetings ServerCallback AssistAura Orchestration DesignerSession Border Controller for EnterpriseAvaya Equinox ConferencingWebLMIP Office Application Server
CVE IDTitleCVSSSeverityPublished
CVE-2020-7033 Avaya Equinox Conferencing XSS — Avaya Equinox ConferencingCWE-79 6.3 Medium2020-11-12
CVE-2020-7029 Avaya Product System Management Interface Cross-Site Request Forgery Vulnerability — Avaya Aura Communication ManagerCWE-352 6.4 Medium2020-08-11
CVE-2019-7005 Unauthenticated Information Disclosure Vulnerability in IP Office — IP OfficeCWE-200 7.5 -2020-08-07
CVE-2020-7030 IPO Information Disclosure — IP OfficeCWE-522 5.5 Medium2020-06-03
CVE-2019-7007 Avaya Equinox Conferencing Management (iView) Directory Traversal Vulnerability — Equinox Conferencing Management (iView)CWE-22 7.5 High2020-02-28
CVE-2019-7004 Avaya IP Office XSS Vulnerability — IP Office Application ServerCWE-79 6.1 -2019-12-11
CVE-2019-7000 Avaya Aura Conferencing XSS — Avaya Aura ConferencingCWE-79 6.1 -2019-07-31
CVE-2019-7003 ACM SQL Injection — Avaya Control ManagerCWE-89 9.1 -2019-07-11
CVE-2019-7001 Avaya IPOCC WebUI SQL Injection — IP Office Contact CenterCWE-89 8.1 -2019-04-04
CVE-2018-15617 Communication Manager Denial of Service — Communication ManagerCWE-399 7.5 -2019-02-01
CVE-2018-15614 IP Office one-X Portal XSS — IP OfficeCWE-79 5.4 -2019-01-23
CVE-2018-15616 System Platform Web UI Deserialization — Avaya Aura® System PlatformCWE-502 9.8 -2018-10-17
CVE-2018-15611 Communication Manager Local Administrator PrivEsc — Communication ManagerCWE-284 6.7 -2018-09-27
CVE-2018-15615 CMS Supervisor Information Disclosure — Call Management System SupervisorCWE-200 4.4 -2018-09-24
CVE-2018-15613 Orchestration Designer Runtime Config XSS — Orchestration DesignerCWE-79 6.1 -2018-09-21
CVE-2018-15612 Orchestration Designer Runtime Config CSRF — Orchestration DesignerCWE-352 8.8 -2018-09-21
CVE-2018-15610 Improper access controls in IP Office one-X Portal — IP OfficeCWE-284 8.8 -2018-09-12

This page lists every published CVE security advisory associated with Avaya. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.