CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-15616

A vulnerability in the Web UI component of Avaya Aura System Platform could allow a remote, unauthenticated user to perform a targeted deserialization attack that could result in remote code execution. Affected versions of System Platform includes 6.3.0 through 6.3.9 and 6.4.0 through 6.4.2.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.044

EPSS Ranking 88.5%

CVSS Severity

CVSS v3 Score 9.0

CVSS v2 Score 7.5

References

Products affected by CVE-2018-15616

Avaya » Avaya Aura System Platform » Version: 6.3.0

cpe:2.3:h:avaya:avaya_aura_system_platform:6.3.0
Avaya » Avaya Aura System Platform » Version: 6.3.1

cpe:2.3:h:avaya:avaya_aura_system_platform:6.3.1
Avaya » Avaya Aura System Platform » Version: 6.3.4

cpe:2.3:h:avaya:avaya_aura_system_platform:6.3.4
Avaya » Avaya Aura System Platform » Version: 6.3.5

cpe:2.3:h:avaya:avaya_aura_system_platform:6.3.5
Avaya » Avaya Aura System Platform » Version: 6.3.6

cpe:2.3:h:avaya:avaya_aura_system_platform:6.3.6
Avaya » Avaya Aura System Platform » Version: 6.3.7

cpe:2.3:h:avaya:avaya_aura_system_platform:6.3.7
Avaya » Avaya Aura System Platform » Version: 6.3.8

cpe:2.3:h:avaya:avaya_aura_system_platform:6.3.8
Avaya » Avaya Aura System Platform » Version: 6.3.9

cpe:2.3:h:avaya:avaya_aura_system_platform:6.3.9
Avaya » Avaya Aura System Platform » Version: 6.4.0

cpe:2.3:h:avaya:avaya_aura_system_platform:6.4.0
Avaya » Avaya Aura System Platform » Version: 6.4.1

cpe:2.3:h:avaya:avaya_aura_system_platform:6.4.1
Avaya » Avaya Aura System Platform » Version: 6.4.2

cpe:2.3:h:avaya:avaya_aura_system_platform:6.4.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-15616

Products

Pricing

Contact Us