VYPR
Unrated severityNVD Advisory· Published Dec 24, 2008· Updated Jun 16, 2026

CVE-2008-5709

CVE-2008-5709

Description

Multiple unspecified vulnerabilities in the web management interface in Avaya Communication Manager (CM) 3.1 before 3.1.4 SP2, 4.0 before 4.0.3 SP1, and 5.0 before 5.0 SP3 allow remote authenticated users to execute arbitrary code via unknown attack vectors in the (1) Set Static Routes and (2) Backup History components.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

13
  • cpe:2.3:a:avaya:communication_manager:3.1.1:*:*:*:*:*:*:*+ 12 more
    • cpe:2.3:a:avaya:communication_manager:3.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:avaya:communication_manager:3.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:avaya:communication_manager:3.1.3:*:*:*:*:*:*:*
    • cpe:2.3:a:avaya:communication_manager:3.1.4:sp1:*:*:*:*:*:*
    • cpe:2.3:a:avaya:communication_manager:4.0:*:*:*:*:*:*:*
    • cpe:2.3:a:avaya:communication_manager:4.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:avaya:communication_manager:4.0.1:sp15215:*:*:*:*:*:*
    • cpe:2.3:a:avaya:communication_manager:4.0.1:sp15500:*:*:*:*:*:*
    • cpe:2.3:a:avaya:communication_manager:4.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:avaya:communication_manager:5.0:*:*:*:*:*:*:*
    • cpe:2.3:a:avaya:communication_manager:5.0:sp1:*:*:*:*:*:*
    • cpe:2.3:a:avaya:communication_manager:5.0:sp2:*:*:*:*:*:*
    • (no CPE)range: <3.1.4 SP2, <4.0.3 SP1, <5.0 SP3

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.