Lucene search
HistoryJun 25, 2024 - 4:15 a.m.
CVE-2024-4197
remote execution
code execution
avaya ip office
vulnerability
CVSS3
9.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS
0
Percentile
9.1%
An unrestricted file upload vulnerability in Avaya IP Office was discovered that could allow remote command or code execution via the One-X component. Affected versions include all versions prior to 11.1.3.1.
Related
cvelist
cvelist
CVE-2024-4197 Avaya IP Office One-X Portal File Upload Vulnerability
2024-06-25 04:01:17
cve
cve
CVE-2024-4197
2024-06-25 04:15:17
vulnrichment
vulnrichment
CVE-2024-4197 Avaya IP Office One-X Portal File Upload Vulnerability
2024-06-25 04:01:17
CVSS3
9.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS
0
Percentile
9.1%
Related for NVD:CVE-2024-4197