VYPR
Unrated severityNVD Advisory· Published Jun 24, 2021· Updated Aug 3, 2024

URL redirection to untrusted site possible in Avaya Aura Experience Portal

CVE-2021-25655

Description

A vulnerability in the system Service Menu component of Avaya Aura Experience Portal may allow URL Redirection to any untrusted site through a crafted attack. Affected versions include 7.0 through 7.2.3 (without hotfix) and 8.0.0 (without hotfix).

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Avaya/Aura Experience Portalllm-fuzzy2 versions
    >=7.0 <=7.2.3 (without hotfix), =8.0.0 (without hotfix)+ 1 more
    • (no CPE)range: >=7.0 <=7.2.3 (without hotfix), =8.0.0 (without hotfix)
    • (no CPE)range: 8.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.