Avaya Aura Conferencing — known CVE vulnerabilities
Every CVE whose affected-product data names Avaya Aura Conferencing, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2016-5285 — CVSS 7.5 (high): A Null pointer dereference vulnerability exists in Mozilla Network Security Services due to a missing NULL check in PK11_SignWithSymKey /…
CVE-2019-7007 — CVSS 7.5 (high): A directory traversal vulnerability has been found in the Avaya Equinox Management(iView)versions R9.1.9.0 and earlier. Successful…
CVE-2019-7000 — CVSS 6.1 (medium): A Cross-Site Scripting (XSS) vulnerability in the Web UI of Avaya Aura Conferencing may allow code execution and potentially disclose…