CVE-2024-7480

Name of the Vulnerable Software and Affected Versions Avaya Aura System Manager versions 10.1.x.x through 10.2.x.x

Description An improper access control issue was found in Avaya Aura System Manager, allowing a command-line interface user with administrative privileges to read arbitrary files on the system.

Recommendations For versions 10.1.x.x through 10.2.x.x, consider restricting access to sensitive files and directories to minimize the risk of exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.