VYPR
Unrated severityNVD Advisory· Published Jul 11, 2019· Updated Sep 17, 2024

ACM SQL Injection

CVE-2019-7003

Description

A SQL injection vulnerability in the reporting component of Avaya Control Manager could allow an unauthenticated attacker to execute arbitrary SQL commands and retrieve sensitive data related to other users on the system. Affected versions of Avaya Control Manager include 7.x and 8.0.x versions prior to 8.0.4.0. Unsupported versions not listed here were not evaluated.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Range: <8.0.4.0 (7.x and 8.0.x prior to 8.0.4.0)
  • Avaya/Avaya Control Managerv5
    Range: 8.0.x prior to 8.0.4.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.