Aura Experience Portal Avaya Aura Experience Portal

Do you want an email whenever new security vulnerabilities are reported in Avaya Aura Experience Portal?

By the Year

In 2024 there have been 1 vulnerability in Avaya Aura Experience Portal with an average score of 4.3 out of ten. Aura Experience Portal did not have any published security vulnerabilities last year. That is, 1 more vulnerability have already been reported in 2024 as compared to last year.

Year Vulnerabilities Average Score
2024 1 4.30
2023 0 0.00
2022 0 0.00
2021 2 5.75
2020 0 0.00
2019 0 0.00
2018 0 0.00

It may take a day or so for new Aura Experience Portal vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Avaya Aura Experience Portal Security Vulnerabilities

Insecure Direct Object Reference vulnerabilities were discovered in the Avaya Aura Experience Portal Manager which may

CVE-2023-7031 4.3 - Medium - January 17, 2024

Insecure Direct Object Reference vulnerabilities were discovered in the Avaya Aura Experience Portal Manager which may allow partial information disclosure to an authenticated non-privileged user. Affected versions include 8.0.x and 8.1.x, prior to 8.1.2 patch 0402. Versions prior to 8.0 are end of manufacturer support.

Insecure Direct Object Reference / IDOR

Stored XSS injection vulnerabilities were discovered in the Avaya Aura Experience Portal Web management which could

CVE-2021-25656 5.4 - Medium - June 24, 2021

Stored XSS injection vulnerabilities were discovered in the Avaya Aura Experience Portal Web management which could allow an authenticated user to potentially disclose sensitive information. Affected versions include 7.0 through 7.2.3 (without hotfix) and 8.0.0 (without hotfix).

XSS

A vulnerability in the system Service Menu component of Avaya Aura Experience Portal may

CVE-2021-25655 6.1 - Medium - June 24, 2021

A vulnerability in the system Service Menu component of Avaya Aura Experience Portal may allow URL Redirection to any untrusted site through a crafted attack. Affected versions include 7.0 through 7.2.3 (without hotfix) and 8.0.0 (without hotfix).

Open Redirect

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Avaya Aura Experience Portal or by Avaya? Click the Watch button to subscribe.

Avaya
Vendor

subscribe