An XML External Entities (XXE)vulnerability in Callback Assist could allow an authenticated, remote attacker to gain read access to information that is stored on an affected system. The affected versions of Callback Assist includes all 4.0.x versions before 4.7.1.1 Patch 7.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://downloads.avaya.com/css/P8/documents/101075450 |
History
Tue, 17 Sep 2024 02:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Title | XXE in Avaya Callback Assist Administration | XXE in Avaya Callback Assist Administration |
MITRE
Status: PUBLISHED
Assigner: avaya
Published: 2021-04-23T21:00:20.925071Z
Updated: 2024-09-17T01:45:37.197Z
Reserved: 2020-01-14T00:00:00
Link: CVE-2020-7036
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-04-23T21:15:08.090
Modified: 2024-11-21T05:36:31.637
Link: CVE-2020-7036
Redhat
No data.