← Back

Aura Device Services

aura_device_services

Vendor: Avaya • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-3722
1Avaya
1Aura Device Services
Nov 21, 2024
Jul 19, 2023
N/A· v4
9.8 CRITICAL· v3
N/A· v2
An OS command injection vulnerability was found in the Avaya Aura Device Services Web application which could allow remote code execution as the Web server user via a malicious uploaded file. This issue affects Avaya Aur...Show more
An OS command injection vulnerability was found in the Avaya Aura Device Services Web application which could allow remote code execution as the Web server user via a malicious uploaded file. This issue affects Avaya Aura Device Services version 8.1.4.0 and earlier.Show less
CVE-2021-25654
1Avaya
1Aura Device Services
Nov 21, 2024
Jun 25, 2021
N/A· v4
7.8 HIGH· v3
4.6 MEDIUM· v2
An arbitrary code execution vulnerability was discovered in Avaya Aura Device Services that may potentially allow a local user to execute specially crafted scripts. Affects 7.0 through 8.1.4.0 versions of Avaya Aura Devi...Show more
An arbitrary code execution vulnerability was discovered in Avaya Aura Device Services that may potentially allow a local user to execute specially crafted scripts. Affects 7.0 through 8.1.4.0 versions of Avaya Aura Device Services.Show less