Description
Avaya IX Workforce Engagement v15.2.7.1195 - CWE-522: Insufficiently Protected Credentials
CVSS breakdown
CVSS 3.1
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None
Affected products
- Avaya / IX Workforce EngagementUpdate to the latest version – v15.2.7.1195*
References
- VENDOR_ADVISORYhttps://www.gov.il/en/Departments/faq/cve_advisories