Avaya Aura Experience Portal
By the Year
In 2024 there have been 1 vulnerability in Avaya Aura Experience Portal with an average score of 4.3 out of ten. Aura Experience Portal did not have any published security vulnerabilities last year. That is, 1 more vulnerability have already been reported in 2024 as compared to last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 1 | 4.30 |
2023 | 0 | 0.00 |
2022 | 0 | 0.00 |
2021 | 2 | 5.75 |
2020 | 0 | 0.00 |
2019 | 0 | 0.00 |
2018 | 0 | 0.00 |
It may take a day or so for new Aura Experience Portal vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Avaya Aura Experience Portal Security Vulnerabilities
Insecure Direct Object Reference vulnerabilities were discovered in the Avaya Aura Experience Portal Manager which may
CVE-2023-7031
4.3 - Medium
- January 17, 2024
Insecure Direct Object Reference vulnerabilities were discovered in the Avaya Aura Experience Portal Manager which may allow partial information disclosure to an authenticated non-privileged user. Affected versions include 8.0.x and 8.1.x, prior to 8.1.2 patch 0402. Versions prior to 8.0 are end of manufacturer support.
Insecure Direct Object Reference / IDOR
Stored XSS injection vulnerabilities were discovered in the Avaya Aura Experience Portal Web management which could
CVE-2021-25656
5.4 - Medium
- June 24, 2021
Stored XSS injection vulnerabilities were discovered in the Avaya Aura Experience Portal Web management which could allow an authenticated user to potentially disclose sensitive information. Affected versions include 7.0 through 7.2.3 (without hotfix) and 8.0.0 (without hotfix).
XSS
A vulnerability in the system Service Menu component of Avaya Aura Experience Portal may
CVE-2021-25655
6.1 - Medium
- June 24, 2021
A vulnerability in the system Service Menu component of Avaya Aura Experience Portal may allow URL Redirection to any untrusted site through a crafted attack. Affected versions include 7.0 through 7.2.3 (without hotfix) and 8.0.0 (without hotfix).
Open Redirect
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Avaya Aura Experience Portal or by Avaya? Click the Watch button to subscribe.