Avaya - Aura Device Services CVE

Filtered by vendor Avaya Subscribe

Filtered by product Aura Device Services

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2023-3722	1 Avaya	1 Aura Device Services	2023-07-28	N/A	9.8 CRITICAL
An OS command injection vulnerability was found in the Avaya Aura Device Services Web application which could allow remote code execution as the Web server user via a malicious uploaded file. This issue affects Avaya Aura Device Services version 8.1.4.0 and earlier.

Vulnerabilities (CVE)