Insecure Direct Object Reference vulnerabilities were discovered in the Avaya Aura Experience Portal Manager which may allow partial information disclosure to an authenticated non-privileged user. Affected versions include 8.0.x and 8.1.x, prior to 8.1.2 patch 0402. Versions prior to 8.0 are end of manufacturer support.
References
Link | Resource |
---|---|
https://support.avaya.com/css/public/documents/101088063 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: avaya
Published: 2024-01-17T18:34:41.831Z
Updated: 2024-01-17T18:34:41.831Z
Reserved: 2023-12-20T21:44:13.722Z
Link: CVE-2023-7031
JSON object: View
NVD Information
Status : Analyzed
Published: 2024-01-17T19:15:08.293
Modified: 2024-01-25T16:32:53.153
Link: CVE-2023-7031
JSON object: View
Redhat Information
No data.