Vulnerability Details CVE-2018-15617
A vulnerability in the "capro" (Call Processor) process component of Avaya Aura Communication Manager could allow a remote, unauthenticated user to cause denial of service. Affected versions include 6.3.x, all 7.x versions prior to 7.1.3.2, and all 8.x versions prior to 8.0.1.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 58.6%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 5.0
References
Products affected by CVE-2018-15617
-
cpe:2.3:a:avaya:aura_communication_manager:6.3.0.1
-
cpe:2.3:a:avaya:aura_communication_manager:6.3.1.0
-
cpe:2.3:a:avaya:aura_communication_manager:6.3.10.0
-
cpe:2.3:a:avaya:aura_communication_manager:6.3.11.0
-
cpe:2.3:a:avaya:aura_communication_manager:6.3.11.1
-
cpe:2.3:a:avaya:aura_communication_manager:6.3.12.0
-
cpe:2.3:a:avaya:aura_communication_manager:6.3.13.0
-
cpe:2.3:a:avaya:aura_communication_manager:6.3.14.0
-
cpe:2.3:a:avaya:aura_communication_manager:6.3.15.1
-
cpe:2.3:a:avaya:aura_communication_manager:6.3.16.0
-
cpe:2.3:a:avaya:aura_communication_manager:6.3.17.0
-
cpe:2.3:a:avaya:aura_communication_manager:6.3.2.0
-
cpe:2.3:a:avaya:aura_communication_manager:6.3.2.1
-
cpe:2.3:a:avaya:aura_communication_manager:6.3.4.1
-
cpe:2.3:a:avaya:aura_communication_manager:6.3.6.1
-
cpe:2.3:a:avaya:aura_communication_manager:6.3.7.0
-
cpe:2.3:a:avaya:aura_communication_manager:6.3.7.1
-
cpe:2.3:a:avaya:aura_communication_manager:6.3.8.0
-
cpe:2.3:a:avaya:aura_communication_manager:6.3.9.0
-
cpe:2.3:a:avaya:aura_communication_manager:7.0
-
cpe:2.3:a:avaya:aura_communication_manager:7.0.0.1
-
cpe:2.3:a:avaya:aura_communication_manager:7.0.0.2
-
cpe:2.3:a:avaya:aura_communication_manager:7.0.1.3
-
cpe:2.3:a:avaya:aura_communication_manager:7.1
-
cpe:2.3:a:avaya:aura_communication_manager:7.1.1
-
cpe:2.3:a:avaya:aura_communication_manager:7.1.2
-
cpe:2.3:a:avaya:aura_communication_manager:7.1.3
-
cpe:2.3:a:avaya:aura_communication_manager:7.1.3.1
-
cpe:2.3:a:avaya:aura_communication_manager:8.0