CVE Vulnerabilities

CVE-2018-15617

Published: Feb 01, 2019 | Modified: Oct 09, 2019
CVSS 3.x
7.5
HIGH
Source:
NVD
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

A vulnerability in the capro (Call Processor) process component of Avaya Aura Communication Manager could allow a remote, unauthenticated user to cause denial of service. Affected versions include 6.3.x, all 7.x versions prior to 7.1.3.2, and all 8.x versions prior to 8.0.1.

Affected Software

Name Vendor Start Version End Version
Aura_communication_manager Avaya 6.3.0.1 6.3.17.0
Aura_communication_manager Avaya 7.0 *
Aura_communication_manager Avaya 8.0 *

References