Avaya Aura Appliance Virtualization Platform Utilities Privilege Escalation Vulnerability

CVE-2021-25653

8HIGH

Key Information

Vendor
Avaya
Status
Avaya Aura Appliance Virtualization Platform Utilities
Vendor
CVE Published:
24 June 2021

Summary

A privilege escalation vulnerability was discovered in Avaya Aura Appliance Virtualization Platform Utilities (AVPU) that may potentially allow a local user to escalate privileges. Affects 8.0.0.0 through 8.1.3.1 versions of AVPU.

Affected Version(s)

Avaya Aura Appliance Virtualization Platform Utilities <= 8.1.3.1

References

CVSS V3.1

Score:
8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
High
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database
.