Avaya Aura_experience_portal
4 CVEs affecting Avaya Aura_experience_portal. Latest disclosed: 2024-01-17. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2016-5285 | High | 7.5 | 2019-11-15 | A Null pointer dereference vulnerability exists in Mozilla Network Security Services due to a missing NULL check in PK11_SignWithSymKey / ssl3_ComputeRecordMAC… |
CVE-2023-7031 | Medium | 5.7 | 2024-01-17 | Insecure Direct Object Reference vulnerabilities were discovered in the Avaya Aura Experience Portal Manager which may allow partial information disclosure to… |
CVE-2021-25656 | Medium | 5.3 | 2021-06-24 | Stored XSS injection vulnerabilities were discovered in the Avaya Aura Experience Portal Web management which could allow an authenticated user to potentially… |
CVE-2021-25655 | Medium | 4.4 | 2021-06-24 | A vulnerability in the system Service Menu component of Avaya Aura Experience Portal may allow URL Redirection to any untrusted site through a crafted attack… |