9 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
7.4 High
AI Score
Confidence
Low
0.015 Low
EPSS
Percentile
86.9%
Multiple unspecified vulnerabilities in the web management interface in Avaya Communication Manager (CM) 3.1 before 3.1.4 SP2, 4.0 before 4.0.3 SP1, and 5.0 before 5.0 SP3 allow remote authenticated users to execute arbitrary code via unknown attack vectors in the (1) Set Static Routes and (2) Backup History components.
secunia.com/advisories/32204
support.avaya.com/elmodocs2/security/ASA-2008-391.htm
www.securityfocus.com/bid/31645
www.voipshield.com/research-details.php?id=121
www.voipshield.com/research-details.php?id=122
www.vupen.com/english/advisories/2008/2772
exchange.xforce.ibmcloud.com/vulnerabilities/45747
exchange.xforce.ibmcloud.com/vulnerabilities/45749