Unrated severityNVD Advisory· Published Dec 24, 2008· Updated Jun 16, 2026
CVE-2008-5709
CVE-2008-5709
Description
Multiple unspecified vulnerabilities in the web management interface in Avaya Communication Manager (CM) 3.1 before 3.1.4 SP2, 4.0 before 4.0.3 SP1, and 5.0 before 5.0 SP3 allow remote authenticated users to execute arbitrary code via unknown attack vectors in the (1) Set Static Routes and (2) Backup History components.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
13cpe:2.3:a:avaya:communication_manager:3.1.1:*:*:*:*:*:*:*+ 12 more
- cpe:2.3:a:avaya:communication_manager:3.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:avaya:communication_manager:3.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:avaya:communication_manager:3.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:avaya:communication_manager:3.1.4:sp1:*:*:*:*:*:*
- cpe:2.3:a:avaya:communication_manager:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:avaya:communication_manager:4.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:avaya:communication_manager:4.0.1:sp15215:*:*:*:*:*:*
- cpe:2.3:a:avaya:communication_manager:4.0.1:sp15500:*:*:*:*:*:*
- cpe:2.3:a:avaya:communication_manager:4.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:avaya:communication_manager:5.0:*:*:*:*:*:*:*
- cpe:2.3:a:avaya:communication_manager:5.0:sp1:*:*:*:*:*:*
- cpe:2.3:a:avaya:communication_manager:5.0:sp2:*:*:*:*:*:*
- (no CPE)range: <3.1.4 SP2, <4.0.3 SP1, <5.0 SP3
Patches
Vulnerability mechanics
References
8- secunia.com/advisories/32204nvdVendor Advisory
- support.avaya.com/elmodocs2/security/ASA-2008-391.htmnvdVendor Advisory
- www.securityfocus.com/bid/31645nvd
- www.voipshield.com/research-details.phpnvd
- www.voipshield.com/research-details.phpnvd
- www.vupen.com/english/advisories/2008/2772nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/45747nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/45749nvd
News mentions
0No linked articles in our index yet.