Avaya Call Management System — known CVE vulnerabilities
Every CVE whose affected-product data names Avaya Call Management System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2025-1041 — CVSS 9.9 (critical): An improper input validation discovered in Avaya Call Management System could allow an unauthorized remote command via a specially crafted…
CVE-2016-5285 — CVSS 7.5 (high): A Null pointer dereference vulnerability exists in Mozilla Network Security Services due to a missing NULL check in PK11_SignWithSymKey /…
CVE-2023-3527 — CVSS 6.8 (medium): A CSV injection vulnerability was found in the Avaya Call Management System (CMS) Supervisor web application which allows a user with…