PT-2018-13118 · Avaya · Avaya Aura Orchestration Designer
Giulio Comi
·
Publicado
2018-09-21
·
Atualizado
2019-10-09
·
CVE-2018-15612
CVSS v3.1
8.8
Alta
| Vetor | AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Avaya Aura Orchestration Designer versions prior to 7.2.1
Description
A CSRF issue in the Runtime Config component could allow an attacker to modify administrative settings, including adding, changing, or removing them.
Recommendations
For versions prior to 7.2.1, update to version 7.2.1 or later to resolve the issue.
Correção
CSRF
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Avaya Aura Orchestration Designer