Vulnerability Description
Unspecified vulnerability in the Web administration interface in Avaya Communication Manager 3.1.x before CM 3.1.4 SP2 and 4.0.x before 4.0.3 SP1 allows remote authenticated administrators to gain root privileges via unknown vectors related to "configuring data viewing or restoring credentials."
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Avaya | Communication Manager | 3.1 |
References
- http://secunia.com/advisories/30799
- http://support.avaya.com/elmodocs2/security/ASA-2008-270.htmVendor Advisory
- http://www.osvdb.org/46582
- http://www.securityfocus.com/bid/29939
- http://www.voipshield.com/research-details.php?id=79
- http://www.vupen.com/english/advisories/2008/1944/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43386
- http://secunia.com/advisories/30799
- http://support.avaya.com/elmodocs2/security/ASA-2008-270.htmVendor Advisory
- http://www.osvdb.org/46582
- http://www.securityfocus.com/bid/29939
- http://www.voipshield.com/research-details.php?id=79
- http://www.vupen.com/english/advisories/2008/1944/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43386
FAQ
What is CVE-2008-6710?
CVE-2008-6710 is a vulnerability with a CVSS score of 9.0 (HIGH). Unspecified vulnerability in the Web administration interface in Avaya Communication Manager 3.1.x before CM 3.1.4 SP2 and 4.0.x before 4.0.3 SP1 allows remote authenticated administrators to gain roo...
How severe is CVE-2008-6710?
CVE-2008-6710 has been rated HIGH with a CVSS base score of 9.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-6710?
Check the references section above for vendor advisories and patch information. Affected products include: Avaya Communication Manager.