exploitDog

GHSA-mm4v-5mwg-c6qp

Опубликовано: 10 июн. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 9.9

Описание

An improper input validation discovered in

Avaya Call Management System could allow an unauthorized

remote command via a specially crafted web request. Affected versions include 18.x, 19.x prior to 19.2.0.7, and 20.x prior to 20.0.1.0.

An improper input validation discovered in

Avaya Call Management System could allow an unauthorized

remote command via a specially crafted web request. Affected versions include 18.x, 19.x prior to 19.2.0.7, and 20.x prior to 20.0.1.0.

Ссылки

EPSS

Процентиль: 35%

0.00142

Низкий

9.9 Critical

CVSS3

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2025-1041

CVSS3: 9.9

nvd

8 месяцев назад

An improper input validation discovered in Avaya Call Management System could allow an unauthorized remote command via a specially crafted web request. Affected versions include 18.x, 19.x prior to 19.2.0.7, and 20.x prior to 20.0.1.0.

EPSS

Процентиль: 35%

0.00142

Низкий

9.9 Critical

CVSS3

CVE ID

Дефекты

CWE-20