VYPR
Unrated severityNVD Advisory· Published Jul 19, 2023· Updated Oct 22, 2024

Avaya Aura Device Services Remote Code Execution

CVE-2023-3722

Description

An OS command injection vulnerability was found in the Avaya Aura Device Services Web application which could allow remote code execution as the Web server user via a malicious uploaded file. This issue affects Avaya Aura Device Services version 8.1.4.0 and earlier.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.