CVE-2023-7031

CVSS V2 None CVSS V3 None

Description

Insecure Direct Object Reference vulnerabilities were discovered in the Avaya Aura Experience Portal Manager which may allow partial information disclosure to an authenticated non-privileged user. Affected versions include 8.0.x and 8.1.x, prior to 8.1.2 patch 0402. Versions prior to 8.0 are end of manufacturer support.

Overview

CVE ID
CVE-2023-7031

Assigner
avaya

Vulnerability Status
PUBLISHED

Published Version
2024-01-17T18:34:41.831Z

Last Modified Date
2024-01-17T18:34:41.831Z

Weakness Enumerations

CWE	URL
CWE-200	http://cwe.mitre.org/data/definitions/200.html

References

Reference URL	Reference Tags
https://support.avaya.com/css/public/documents/101088063

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2023-7031
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-7031

History

Created	Old Value	New Value	Data Type	Notes
2024-06-25 02:58:46				Added to TrackCVE