Filtered by vendor Avaya Subscriptions
Filtered by product Aura Device Services Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-3722 1 Avaya 1 Aura Device Services 2024-11-21 8.6 High
An OS command injection vulnerability was found in the Avaya Aura Device Services Web application which could allow remote code execution as the Web server user via a malicious uploaded file. This issue affects Avaya Aura Device Services version 8.1.4.0 and earlier.
CVE-2021-25654 1 Avaya 1 Aura Device Services 2024-11-21 6.2 Medium
An arbitrary code execution vulnerability was discovered in Avaya Aura Device Services that may potentially allow a local user to execute specially crafted scripts. Affects 7.0 through 8.1.4.0 versions of Avaya Aura Device Services.