Unrated severityNVD Advisory· Published Apr 23, 2021· Updated Sep 16, 2024
XXE in Avaya Aura Orchestration Designer
CVE-2020-7035
Description
An XML External Entities (XXE)vulnerability in the web-based user interface of Avaya Aura Orchestration Designer could allow an authenticated, remote attacker to gain read access to information that is stored on an affected system. The affected versions of Orchestration Designer includes all 7.x versions before 7.2.3.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<7.2.3+ 1 more
- (no CPE)range: <7.2.3
- (no CPE)range: 7.x
Patches
Vulnerability mechanics
References
1- downloads.avaya.com/css/P8/documents/101075450mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.