CVE-2020-7032

🗓️ 13 Nov 2020 00:20:14Reported by avayaType

cve🔗 web.nvd.nist.gov👁 71 Views🌐 WEB

XML external entity (XXE) vulnerability in Avaya WebLM admin interface allows authenticated users to read arbitrary files or conduct server-side request forgery (SSRF) attacks via a crafted DTD in an XML request

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2020-7032	13 Nov 202007:32	–	circl
Cvelist	CVE-2020-7032 Avaya WebLM Improper Restriction of XML External Entity Reference	13 Nov 202000:20	–	cvelist
EUVD	EUVD-2020-28166	7 Oct 202500:30	–	euvd
NVD	CVE-2020-7032	13 Nov 202001:15	–	nvd
OSV	CVE-2020-7032	13 Nov 202001:15	–	osv
Packet Storm	Avaya Web License Manager XML Injection	18 Nov 202000:00	–	packetstorm
Prion	Server side request forgery (ssrf)	13 Nov 202001:15	–	prion
Positive Technologies	PT-2020-19348 · Avaya · Avaya Weblm	13 Nov 202000:00	–	ptsecurity

NVD

Node

avaya aura_system_managerRange7.0–7.1.3.6

avaya aura_system_managerRange8.0–8.1.2

avaya weblmRange7.0–7.1.3.6

avaya weblmRange8.0.0–8.1.3

[
  {
    "product": "WebLM",
    "vendor": "Avaya",
    "versions": [
      {
        "status": "affected",
        "version": "8.0.x"
      },
      {
        "lessThan": "7.1.3.6",
        "status": "affected",
        "version": "7.0",
        "versionType": "custom"
      },
      {
        "lessThan": "8.1.2",
        "status": "affected",
        "version": "8.1",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "System Manager",
    "vendor": "Avaya",
    "versions": [
      {
        "status": "affected",
        "version": "8.0.x"
      },
      {
        "lessThan": "7.1.3.6",
        "status": "affected",
        "version": "7.0",
        "versionType": "custom"
      },
      {
        "lessThan": "8.1.2",
        "status": "affected",
        "version": "8.1",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
sec-consult	www.sec-consult.com/vulnerability-lab/advisory/blind-out-of-band-xml-external-entity-injection-in-avaya-web-license-manager/
downloads	www.downloads.avaya.com/css/P8/documents/101072249
seclists	www.seclists.org/fulldisclosure/2020/Nov/31
packetstormsecurity	www.packetstormsecurity.com/files/160123/Avaya-Web-License-Manager-XML-Injection.html

Parameter	Position	Path	Description	CWE
XML payload	request body	WebLM/	Authenticated XML external entity (XXE) vulnerability via crafted XML uploaded through the License upload function to Avaya WebLM, enabling reading arbitrary files/SSRF.	CWE-611

21 Nov 2024 05:36Current

6.3Medium risk

Vulners AI Score6.3

CVSS 25.5

CVSS 3.16.5

EPSS0.00429

CWE-611