CVE-2020-7032
CVE-2020-7032 describes an XML External Entity (XXE) vulnerability in Avaya WebLM admin interface. Authenticated users can exploit a crafted DTD in an XML request to read arbitrary files or perform server-side request forgery (SSRF). Affected versions are Avaya WebLM 7.0–7.1.3.6 and 8.0–8.1.2. Th...