Avaya Aura Application Enablement Services — known CVE vulnerabilities
Every CVE whose affected-product data names Avaya Aura Application Enablement Services, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2022-2975 — CVSS 7.7 (high): A vulnerability related to weak permissions was detected in Avaya Aura Application Enablement Services web application, allowing an…
CVE-2016-5285 — CVSS 7.5 (high): A Null pointer dereference vulnerability exists in Mozilla Network Security Services due to a missing NULL check in PK11_SignWithSymKey /…
CVE-2009-3939 — CVSS 7.1 (high): The poll_mode_io file for the megaraid_sas driver in the Linux kernel 2.6.31.6 and earlier has world-writable permissions, which allows…
CVE-2006-1058 — CVSS 5.5 (medium): BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen…