Описание
A vulnerability in the system Service Menu component of Avaya Aura Experience Portal may allow URL Redirection to any untrusted site through a crafted attack. Affected versions include 7.0 through 7.2.3 (without hotfix) and 8.0.0 (without hotfix).
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 7.0 (включая) до 7.2.3 (включая)
Одно из
cpe:2.3:a:avaya:aura_experience_portal:*:*:*:*:*:*:*:*
cpe:2.3:a:avaya:aura_experience_portal:8.0.0:*:*:*:*:*:*:*
EPSS
Процентиль: 31%
0.00116
Низкий
4.4 Medium
CVSS3
6.1 Medium
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-601
CWE-601
Связанные уязвимости
github
больше 3 лет назад
A vulnerability in the system Service Menu component of Avaya Aura Experience Portal may allow URL Redirection to any untrusted site through a crafted attack. Affected versions include 7.0 through 7.2.3 (without hotfix) and 8.0.0 (without hotfix).
EPSS
Процентиль: 31%
0.00116
Низкий
4.4 Medium
CVSS3
6.1 Medium
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-601
CWE-601