Lucene search
HistoryApr 10, 2009 - 10:00 p.m.
CVE-2008-6708
CVSS2
9
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
AI Score
6.5
Confidence
Low
EPSS
0.005
Percentile
75.9%
Unspecified vulnerability in the Web management interface in Avaya SIP Enablement Services (SES) 3.x and 4.0, as used with Avaya Communication Manager 3.1.x and 4.x, allows remote authenticated administrators to gain root privileges via unknown vectors related to configuration of “data viewing or restoring parameters.”
Affected configurations
Node
avayacommunication_managerMatch3.1
ORavayacommunication_managerMatch3.1.1
ORavayacommunication_managerMatch3.1.2
ORavayacommunication_managerMatch3.1.3
ORavayacommunication_managerMatch3.1.4
ORavayacommunication_managerMatch3.1.5
ORavayacommunication_managerMatch4.0
ORavayacommunication_managerMatch4.0.1
ORavayacommunication_managerMatch4.0.1sp15215
ORavayacommunication_managerMatch4.0.1sp15500
ORavayacommunication_managerMatch4.0.3
ORavayasip_enablement_servicesMatch3.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| avaya | communication_manager | 3.1 | cpe:2.3:a:avaya:communication_manager:3.1:*:*:*:*:*:*:* |
| avaya | communication_manager | 3.1.1 | cpe:2.3:a:avaya:communication_manager:3.1.1:*:*:*:*:*:*:* |
| avaya | communication_manager | 3.1.2 | cpe:2.3:a:avaya:communication_manager:3.1.2:*:*:*:*:*:*:* |
| avaya | communication_manager | 3.1.3 | cpe:2.3:a:avaya:communication_manager:3.1.3:*:*:*:*:*:*:* |
| avaya | communication_manager | 3.1.4 | cpe:2.3:a:avaya:communication_manager:3.1.4:*:*:*:*:*:*:* |
| avaya | communication_manager | 3.1.5 | cpe:2.3:a:avaya:communication_manager:3.1.5:*:*:*:*:*:*:* |
| avaya | communication_manager | 4.0 | cpe:2.3:a:avaya:communication_manager:4.0:*:*:*:*:*:*:* |
| avaya | communication_manager | 4.0.1 | cpe:2.3:a:avaya:communication_manager:4.0.1:*:*:*:*:*:*:* |
| avaya | communication_manager | 4.0.1 | cpe:2.3:a:avaya:communication_manager:4.0.1:sp15215:*:*:*:*:*:* |
| avaya | communication_manager | 4.0.1 | cpe:2.3:a:avaya:communication_manager:4.0.1:sp15500:*:*:*:*:*:* |
Related
cve
cve
CVE-2008-6708
2009-04-10 22:00:00
cvelist
cvelist
CVE-2008-6708
2009-04-10 15:00:00
prion
prion
Design/Logic Flaw
2009-04-10 22:00:00
CVSS2
9
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
AI Score
6.5
Confidence
Low
EPSS
0.005
Percentile
75.9%
Related for NVD:CVE-2008-6708