avaya

Top products

The 15 most recently published vulnerabilities affecting avaya.

• CVE-2025-49186No brute-force protection5.3Jun 12, 2025
• CVE-2025-1041Avaya Call Management System RCE vulnerability9.9Jun 10, 2025
• CVE-2024-12756Avaya Spaces HTML injection (HTMLi) Vulnerability7.3Feb 11, 2025
• CVE-2024-12755Avaya Spaces XSS Vulnerability7.9Feb 11, 2025
• CVE-2024-7480Improper access control in Avaya Aura System Manager4.2Aug 8, 2024
• CVE-2024-7477Avaya Aura System Manager SQL injection vulnerability6.5Aug 8, 2024
• CVE-2024-4197Avaya IP Office One-X Portal File Upload Vulnerability9.9Jun 25, 2024
• CVE-2024-4196Avaya IP Office Web Control RCE Vulnerability10.0Jun 25, 2024
• CVE-2023-7031Avaya Experience Portal Manager Insecure Direct Object Reference Vulnerabilities5.7Jan 17, 2024
• CVE-2023-3722Avaya Aura Device Services Remote Code Execution8.6Jul 19, 2023
• CVE-2023-3527Avaya Call Management System CSV injection vulnerability6.8Jul 18, 2023
• CVE-2023-32218Avaya IX Workforce Engagement - CWE-601: URL Redirection to Untrusted Site ('Open Redirect')6.1May 30, 2023
• CVE-2023-31187Avaya IX Workforce Engagement - CWE-522: Insufficiently Protected Credentials6.5May 30, 2023
• CVE-2023-31186Avaya IX Workforce Engagement - User Enumeration - CWE-204: Observable Response Discrepancy5.3May 30, 2023
• CVE-2022-38168Broken Access Control in User Authentication in Avaya Scopia Pathfinder 10 and 20 PTS version 8.3.7.0.4 allows remote unauthenticated attackers to bypass the login page, access sensitive informatio...9.1Nov 3, 2022