2 matches found
CVE-2024-7477
CVE-2024-7477 documents a SQL injection vulnerability in Avaya Aura System Manager. An CLI user with administrative privileges can trigger arbitrary SQL queries against the System Manager database. Affected versions: 10.1.x.x and 10.2.x.x; versions prior to 10.1 are end of manufacturer support. R...
CVE-2024-7477 Avaya Aura System Manager SQL injection vulnerability
A SQL injection vulnerability was found which could allow a command line interface CLI user with administrative privileges to execute arbitrary queries against the Avaya Aura System Manager database. Affected versions include 10.1.x.x and 10.2.x.x. Versions prior to 10.1 are end of manufacturer...