Lucene search
K

211 matches found

NVD
NVD
added 2023/05/30 8:15 p.m.27 views

CVE-2023-32218

Avaya IX Workforce Engagement v15.2.7.1195 - CWE-601: URL Redirection to Untrusted Site 'Open Redirect'...

6.1CVSS6.2AI score0.00335EPSS
Exploits0References1
OSV
OSV
added 2023/05/30 8:15 p.m.4 views

CVE-2023-32218

Avaya IX Workforce Engagement v15.2.7.1195 - CWE-601: URL Redirection to Untrusted Site 'Open Redirect'...

6.1CVSS5.8AI score0.00335EPSS
Exploits0References1
OSV
OSV
added 2023/05/30 8:15 p.m.4 views

CVE-2023-31186

Avaya IX Workforce Engagement v15.2.7.1195 - User Enumeration - Observable Response Discrepancy...

5.3CVSS6.1AI score0.0045EPSS
Exploits0References1
Prion
Prion
added 2023/05/30 8:15 p.m.19 views

Design/Logic Flaw

Avaya IX Workforce Engagement v15.2.7.1195 - CWE-522: Insufficiently Protected Credentials...

4CVSS6.5AI score0.00474EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/05/30 8:15 p.m.20 views

Open redirect

Avaya IX Workforce Engagement v15.2.7.1195 - CWE-601: URL Redirection to Untrusted Site 'Open Redirect'...

5.8CVSS6.3AI score0.00335EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/05/30 8:15 p.m.20 views

Code injection

Avaya IX Workforce Engagement v15.2.7.1195 - User Enumeration - Observable Response Discrepancy...

5CVSS5.4AI score0.0045EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/05/30 12:0 a.m.15 views

CVE-2023-32218 Avaya IX Workforce Engagement - CWE-601: URL Redirection to Untrusted Site ('Open Redirect')

Avaya IX Workforce Engagement v15.2.7.1195 - CWE-601: URL Redirection to Untrusted Site 'Open Redirect'...

6.1CVSS7.1AI score0.00335EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/05/30 12:0 a.m.13 views

CVE-2023-31187 Avaya IX Workforce Engagement - CWE-522: Insufficiently Protected Credentials

Avaya IX Workforce Engagement v15.2.7.1195 - CWE-522: Insufficiently Protected Credentials...

6.5CVSS7.2AI score0.00474EPSS
Exploits0References1
CVE
CVE
added 2023/05/30 12:0 a.m.61 views

CVE-2023-31186

CVE-2023-31186 affects Avaya IX Workforce Engagement, specifically version 15.2.7.1195, where a user enumeration vulnerability is described as an observable response discrepancy. The connected documents (e.g., CNNVD-202305-2542 and NVD entry) corroborate that an attacker could enumerate users via...

5.3CVSS5.3AI score0.0045EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/05/30 12:0 a.m.45 views

CVE-2023-32218

CVE-2023-32218 affects Avaya IX Workforce Engagement v15.2.7.1195, where an Open Redirect vulnerability (CWE-601) arises from unsafe URL redirection to untrusted sites. The NVD/NIST entry lists a base CVSS v3.1 score of 6.1 (Medium) with Network attack vector, low attack complexity, and user inte...

6.1CVSS6.3AI score0.00335EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/05/30 12:0 a.m.6 views

Avaya IX Workforce Engagement 输入验证错误漏洞

Avaya IX Workforce Engagement is an employee workflow management system from Avaya USA. A security vulnerability exists in Avaya IX Workforce Engagement version v15.2.7.1195 that originates from URL redirection to an untrusted site...

6.1CVSS6.2AI score0.00335EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/05/30 12:0 a.m.14 views

CVE-2023-31186 Avaya IX Workforce Engagement - User Enumeration - CWE-204: Observable Response Discrepancy

Avaya IX Workforce Engagement v15.2.7.1195 - User Enumeration - Observable Response Discrepancy...

5.3CVSS7AI score0.0045EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/05/30 12:0 a.m.5 views

Avaya IX Workforce Engagement 安全漏洞

Avaya IX Workforce Engagement is an employee workflow management system from Avaya USA. A security vulnerability exists in Avaya IX Workforce Engagement version v15.2.7.1195. An attacker could exploit the vulnerability to enumerate users...

5.3CVSS5.8AI score0.0045EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/05/28 2:46 p.m.8 views

CVE-2023-32218

Avaya IX Workforce Engagement v15.2.7.1195 - CWE-601: URL Redirection to Untrusted Site 'Open Redirect'...

6.1CVSS6.4AI score0.00335EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/05/28 2:46 p.m.4 views

CVE-2023-31187

Avaya IX Workforce Engagement v15.2.7.1195 - CWE-522: Insufficiently Protected Credentials...

6.5CVSS5.9AI score0.00474EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/05/28 2:46 p.m.3 views

CVE-2023-31186

Avaya IX Workforce Engagement v15.2.7.1195 - User Enumeration - Observable Response Discrepancy...

5.3CVSS5.9AI score0.0045EPSS
Exploits0References2
NVD
NVD
added 2021/12/27 7:15 p.m.29 views

CVE-2021-43550

The use of a broken or risky cryptographic algorithm is an unnecessary risk that may result in the exposure of sensitive information, which affects the communications between Patient Information Center iX PIC iX Versions C.02 and C.03 and Efficia CM Series Revisions A.01 to C.0x and 4.0...

6.5CVSS0.00219EPSS
Exploits0References1
NVD
NVD
added 2021/12/27 7:15 p.m.18 views

CVE-2021-43552

The use of a hard-coded cryptographic key significantly increases the possibility encrypted data may be recovered from the Patient Information Center iX PIC iX Versions B.02, C.02, and C.03...

6.1CVSS0.00213EPSS
Exploits0References1
OSV
OSV
added 2021/12/27 7:15 p.m.5 views

CVE-2021-43548

Patient Information Center iX PIC iX Versions C.02 and C.03 receives input or data, but does not validate or incorrectly validates that the input has the properties required to process the data safely and correctly...

6.5CVSS5.8AI score0.00366EPSS
Exploits0References1
NVD
NVD
added 2021/12/27 7:15 p.m.20 views

CVE-2021-43548

Patient Information Center iX PIC iX Versions C.02 and C.03 receives input or data, but does not validate or incorrectly validates that the input has the properties required to process the data safely and correctly...

6.5CVSS0.00366EPSS
Exploits0References1
Rows per page
Query Builder