CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-15615

A vulnerability in the Supervisor component of Avaya Call Management System allows local administrative user to extract sensitive information from users connecting to a remote CMS host. Affected versions of CMS Supervisor include R17.0.x and R18.0.x.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 17.4%

CVSS Severity

CVSS v3 Score 7.2

CVSS v2 Score 2.1

References

http://www.securityfocus.com/bid/105392
https://downloads.avaya.com/css/P8/documents/101052300
http://www.securityfocus.com/bid/105392
https://downloads.avaya.com/css/P8/documents/101052300

Products affected by CVE-2018-15615

Avaya » Call Management System Supervisor » Version: 17.0.0

cpe:2.3:a:avaya:call_management_system_supervisor:17.0.0
Avaya » Call Management System Supervisor » Version: 18.0.1.0

cpe:2.3:a:avaya:call_management_system_supervisor:18.0.1.0
Avaya » Call Management System Supervisor » Version: 18.0.2.0

cpe:2.3:a:avaya:call_management_system_supervisor:18.0.2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-15615

Products

Pricing

Contact Us