Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-2249

Privilege escalation related vulnerabilities were discovered in Avaya Aura Communication Manager that may allow local administrative users to escalate their privileges. This issue affects Communication Manager versions 8.0.0.0 through 8.1.3.3 and 10.1.0.0.

Published

2022-10-12T19:15:09.477

Last Modified

2024-11-21T07:00:36.947

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.7 (HIGH)

Weaknesses

Type: Secondary
CWE-269
Type: Primary
CWE-269

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	avaya	aura_communication_manager	< 8.1.3.4	Yes
Application	avaya	aura_communication_manager	10.1.0.0	Yes

References

https://download.avaya.com/css/public/documents/101083760 Release Notes, Vendor Advisory ([email protected])
https://download.avaya.com/css/public/documents/101083760 Release Notes, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)