Avaya · Ip Office · CVE-2019-7005
**Name of the Vulnerable Software and Affected Versions**
IP Office versions 9.x through 11.0.4.2
**Description**
A vulnerability was discovered in the web interface component of IP Office that may potentially allow a remote, unauthenticated user with network access to gain sensitive information.
**Recommendations**
For IP Office versions 9.x, update to a version later than 11.0.4.2.
For IP Office versions 10.0 through 10.1.0.7, update to a version later than 11.0.4.2.
For IP Office versions 11.0 through 11.0.4.2, update to a version later than 11.0.4.2.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.