Remote Code Execution Vulnerabilities in Avaya Communication Manager
CVE-2008-5709

Currently unrated

Key Information:

Vendor: Avaya
Status: Communication Manager
Vendor: CVE Published:; 24 December 2008

Summary

Avaya Communication Manager is affected by multiple vulnerabilities in its web management interface. These issues, present in specific versions of the software, allow authenticated remote users to execute arbitrary code via undetermined attack vectors. Notably, the vulnerabilities are linked to the Set Static Routes and Backup History components, potentially compromising system integrity and exposing sensitive data.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/45747

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/31645

vdb-entryx_refsource_BID

http://www.vupen.com/english/advisories/2008/2772

vdb-entryx_refsource_VUPEN

EPSS Score

5% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Dec 24, 2008
Vulnerability Reserved
Dec 24, 2008