Vulnerabilities > Avaya > Aura Communication Manager > 7.1.3.1

DATE CVE VULNERABILITY TITLE RISK
2020-08-11 CVE-2020-7029 Cross-Site Request Forgery (CSRF) vulnerability in Avaya Aura Communication Manager and Aura Messaging
A Cross-Site Request Forgery (CSRF) vulnerability was discovered in the System Management Interface Web component of Avaya Aura Communication Manager and Avaya Aura Messaging.
network
low complexity
avaya CWE-352
8.8
2019-02-01 CVE-2018-15617 Unspecified vulnerability in Avaya Aura Communication Manager
A vulnerability in the "capro" (Call Processor) process component of Avaya Aura Communication Manager could allow a remote, unauthenticated user to cause denial of service.
network
low complexity
avaya
7.5