CVE-2008-6711
Severity Score
9.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Unspecified vulnerability in the Web administration interface in Avaya Communication Manager 3.1.x before CM 3.1.4 SP2 and 4.0.x before 4.0.3 SP1 allows remote authenticated users to execute arbitrary commands via unknown vectors related to "viewing system logs."
Vulnerabilidad no especificada en el interfase de administración Web en Avaya Communication Manager v3.1.x anteriores a CM v3.1.4 SP2 y v4.0.x anteriores v4.0.3 SP1 permiten a usuarios remotos autentificados, ejecutar comandos de su elección a través de vectores desconocidos, relativo a "viendo registros de sistema".
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2009-04-10 CVE Reserved
- 2009-04-10 CVE Published
- 2023-05-29 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (7)
| URL | Tag | Source |
|---|---|---|
| http://secunia.com/advisories/30799 | Third Party Advisory | |
| http://www.osvdb.org/46581 | Vdb Entry | |
| http://www.securityfocus.com/bid/29939 | Vdb Entry | |
| http://www.voipshield.com/research-details.php?id=80 | X_refsource_misc | |
| http://www.vupen.com/english/advisories/2008/1944/references | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/43391 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://support.avaya.com/elmodocs2/security/ASA-2008-270.htm | 2017-08-17 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Avaya Search vendor "Avaya" | Communication Manager Search vendor "Avaya" for product "Communication Manager" | 3.1 Search vendor "Avaya" for product "Communication Manager" and version "3.1" | - |
Affected
| ||||||
| Avaya Search vendor "Avaya" | Communication Manager Search vendor "Avaya" for product "Communication Manager" | 3.1.1 Search vendor "Avaya" for product "Communication Manager" and version "3.1.1" | - |
Affected
| ||||||
| Avaya Search vendor "Avaya" | Communication Manager Search vendor "Avaya" for product "Communication Manager" | 3.1.2 Search vendor "Avaya" for product "Communication Manager" and version "3.1.2" | - |
Affected
| ||||||
| Avaya Search vendor "Avaya" | Communication Manager Search vendor "Avaya" for product "Communication Manager" | 3.1.3 Search vendor "Avaya" for product "Communication Manager" and version "3.1.3" | - |
Affected
| ||||||
| Avaya Search vendor "Avaya" | Communication Manager Search vendor "Avaya" for product "Communication Manager" | 3.1.4 Search vendor "Avaya" for product "Communication Manager" and version "3.1.4" | - |
Affected
| ||||||
| Avaya Search vendor "Avaya" | Communication Manager Search vendor "Avaya" for product "Communication Manager" | 3.1.4 Search vendor "Avaya" for product "Communication Manager" and version "3.1.4" | sp1 |
Affected
| ||||||
| Avaya Search vendor "Avaya" | Communication Manager Search vendor "Avaya" for product "Communication Manager" | 4.0 Search vendor "Avaya" for product "Communication Manager" and version "4.0" | - |
Affected
| ||||||
| Avaya Search vendor "Avaya" | Communication Manager Search vendor "Avaya" for product "Communication Manager" | 4.0.1 Search vendor "Avaya" for product "Communication Manager" and version "4.0.1" | - |
Affected
| ||||||
| Avaya Search vendor "Avaya" | Communication Manager Search vendor "Avaya" for product "Communication Manager" | 4.0.1 Search vendor "Avaya" for product "Communication Manager" and version "4.0.1" | sp15215 |
Affected
| ||||||
| Avaya Search vendor "Avaya" | Communication Manager Search vendor "Avaya" for product "Communication Manager" | 4.0.1 Search vendor "Avaya" for product "Communication Manager" and version "4.0.1" | sp15500 |
Affected
| ||||||
| Avaya Search vendor "Avaya" | Communication Manager Search vendor "Avaya" for product "Communication Manager" | 4.0.3 Search vendor "Avaya" for product "Communication Manager" and version "4.0.3" | - |
Affected
| ||||||