Stored XSS injection vulnerabilities were discovered in the Avaya Aura Experience Portal Web management which could allow an authenticated user to potentially disclose sensitive information. Affected versions include 7.0 through 7.2.3 (without hotfix) and 8.0.0 (without hotfix).
References
Link | Resource |
---|---|
https://downloads.avaya.com/css/P8/documents/101076234 | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: avaya
Published: 2021-06-24T08:55:32
Updated: 2021-06-24T08:55:32
Reserved: 2021-01-21T00:00:00
Link: CVE-2021-25656
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-06-24T09:15:11.063
Modified: 2021-06-30T13:58:26.777
Link: CVE-2021-25656
JSON object: View
Redhat Information
No data.
CWE