Avaya IP Office Vulnerability Could Allow Remote Command Execution
CVE-2024-4196
9.8CRITICAL
What is CVE-2024-4196?
An improper input validation flaw in Avaya IP Office opens avenues for potential remote command or code execution. This vulnerability arises when a specially crafted web request targets the Web Control component, potentially compromising system integrity. Systems running versions older than 11.1.3.1 are at risk, making it essential for users to upgrade to secure their infrastructures.
Affected Version(s)
IP Office 0 < 11.1.3.1