Unrated severityNVD Advisory· Published Jul 11, 2019· Updated Sep 17, 2024
ACM SQL Injection
CVE-2019-7003
Description
A SQL injection vulnerability in the reporting component of Avaya Control Manager could allow an unauthenticated attacker to execute arbitrary SQL commands and retrieve sensitive data related to other users on the system. Affected versions of Avaya Control Manager include 7.x and 8.0.x versions prior to 8.0.4.0. Unsupported versions not listed here were not evaluated.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <8.0.4.0 (7.x and 8.0.x prior to 8.0.4.0)
- Avaya/Avaya Control Managerv5Range: 8.0.x prior to 8.0.4.0
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/109134mitrevdb-entryx_refsource_BID
- downloads.avaya.com/css/P8/documents/101059368mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.