Unrated severityNVD Advisory· Published Apr 28, 2021· Updated Sep 16, 2024
Avaya Equinox Conferencing XXE vulnerability
CVE-2020-7037
Description
An XML External Entities (XXE) vulnerability in Media Server component of Avaya Equinox Conferencing could allow an authenticated, remote attacker to gain read access to information that is stored on an affected system or even potentially lead to a denial of service. The affected versions of Avaya Equinox Conferencing includes all 9.x versions before 9.1.11. Equinox Conferencing is now offered as Avaya Meetings Server.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: >=9.0, <9.1.11
- Avaya/Avaya Meetings Serverv5Range: 9.x
Patches
Vulnerability mechanics
References
1- support.avaya.com/css/P8/documents/101075574mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.