211 matches found
CVE-2023-32218
Avaya IX Workforce Engagement v15.2.7.1195 - CWE-601: URL Redirection to Untrusted Site 'Open Redirect'...
CVE-2023-32218
Avaya IX Workforce Engagement v15.2.7.1195 - CWE-601: URL Redirection to Untrusted Site 'Open Redirect'...
CVE-2023-31186
Avaya IX Workforce Engagement v15.2.7.1195 - User Enumeration - Observable Response Discrepancy...
Design/Logic Flaw
Avaya IX Workforce Engagement v15.2.7.1195 - CWE-522: Insufficiently Protected Credentials...
Open redirect
Avaya IX Workforce Engagement v15.2.7.1195 - CWE-601: URL Redirection to Untrusted Site 'Open Redirect'...
Code injection
Avaya IX Workforce Engagement v15.2.7.1195 - User Enumeration - Observable Response Discrepancy...
CVE-2023-32218 Avaya IX Workforce Engagement - CWE-601: URL Redirection to Untrusted Site ('Open Redirect')
Avaya IX Workforce Engagement v15.2.7.1195 - CWE-601: URL Redirection to Untrusted Site 'Open Redirect'...
CVE-2023-31187 Avaya IX Workforce Engagement - CWE-522: Insufficiently Protected Credentials
Avaya IX Workforce Engagement v15.2.7.1195 - CWE-522: Insufficiently Protected Credentials...
CVE-2023-31186
CVE-2023-31186 affects Avaya IX Workforce Engagement, specifically version 15.2.7.1195, where a user enumeration vulnerability is described as an observable response discrepancy. The connected documents (e.g., CNNVD-202305-2542 and NVD entry) corroborate that an attacker could enumerate users via...
CVE-2023-32218
CVE-2023-32218 affects Avaya IX Workforce Engagement v15.2.7.1195, where an Open Redirect vulnerability (CWE-601) arises from unsafe URL redirection to untrusted sites. The NVD/NIST entry lists a base CVSS v3.1 score of 6.1 (Medium) with Network attack vector, low attack complexity, and user inte...
Avaya IX Workforce Engagement 输入验证错误漏洞
Avaya IX Workforce Engagement is an employee workflow management system from Avaya USA. A security vulnerability exists in Avaya IX Workforce Engagement version v15.2.7.1195 that originates from URL redirection to an untrusted site...
CVE-2023-31186 Avaya IX Workforce Engagement - User Enumeration - CWE-204: Observable Response Discrepancy
Avaya IX Workforce Engagement v15.2.7.1195 - User Enumeration - Observable Response Discrepancy...
Avaya IX Workforce Engagement 安全漏洞
Avaya IX Workforce Engagement is an employee workflow management system from Avaya USA. A security vulnerability exists in Avaya IX Workforce Engagement version v15.2.7.1195. An attacker could exploit the vulnerability to enumerate users...
CVE-2023-32218
Avaya IX Workforce Engagement v15.2.7.1195 - CWE-601: URL Redirection to Untrusted Site 'Open Redirect'...
CVE-2023-31187
Avaya IX Workforce Engagement v15.2.7.1195 - CWE-522: Insufficiently Protected Credentials...
CVE-2023-31186
Avaya IX Workforce Engagement v15.2.7.1195 - User Enumeration - Observable Response Discrepancy...
CVE-2021-43550
The use of a broken or risky cryptographic algorithm is an unnecessary risk that may result in the exposure of sensitive information, which affects the communications between Patient Information Center iX PIC iX Versions C.02 and C.03 and Efficia CM Series Revisions A.01 to C.0x and 4.0...
CVE-2021-43552
The use of a hard-coded cryptographic key significantly increases the possibility encrypted data may be recovered from the Patient Information Center iX PIC iX Versions B.02, C.02, and C.03...
CVE-2021-43548
Patient Information Center iX PIC iX Versions C.02 and C.03 receives input or data, but does not validate or incorrectly validates that the input has the properties required to process the data safely and correctly...
CVE-2021-43548
Patient Information Center iX PIC iX Versions C.02 and C.03 receives input or data, but does not validate or incorrectly validates that the input has the properties required to process the data safely and correctly...