CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-2783

Avaya Fabric Connect Virtual Services Platform (VSP) Operating System Software (VOSS) before 4.2.3.0 and 5.x before 5.0.1.0 does not properly handle VLAN and I-SIS indexes, which allows remote attackers to obtain unauthorized access via crafted Ethernet frames.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.025

EPSS Ranking 85.0%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 10.0

References

http://www.securityfocus.com/bid/92157
https://packetstormsecurity.com/files/138082/Avaya-VOSS-4.1.0.0-SPB-Traffic-Traversal.html
http://www.securityfocus.com/bid/92157
https://packetstormsecurity.com/files/138082/Avaya-VOSS-4.1.0.0-SPB-Traffic-Traversal.html

Products affected by CVE-2016-2783

Avaya » Vsp Operating System Software » Version: 4.2.2.0

cpe:2.3:a:avaya:vsp_operating_system_software:4.2.2.0
Avaya » Vsp Operating System Software » Version: 5.0.0.0

cpe:2.3:a:avaya:vsp_operating_system_software:5.0.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-2783

Products

Pricing

Contact Us