CVE-2007-1491

3 documents3 sources

Severity

5.2MEDIUM

EPSS

0.1%

top 71.25%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Avaya S8300 Avaya S8500 Avaya S8700

Timeline

PublishedMar 16

Latest updateMay 1

Description

Apache Tomcat in Avaya S87XX, S8500, and S8300 before CM 3.1.3, and Avaya SES allows connections from external interfaces via port 8009, which exposes it to attacks from outside parties.

CVSS vector

AV:A/AC:L/C:P/I:P/A:PExploitability: 5.1 | Impact: 6.4

Affected Packages3 packages

▶NVDavaya/s8300cm_3.1.2

▶NVDavaya/s8500cm_3.1.2

▶NVDavaya/s8700cm_3.1.2

🔴Vulnerability Details

GHSA

GHSA-4m85-jqvq-xx9c: Apache Tomcat in Avaya S87XX, S8500, and S8300 before CM 3↗2022-05-01

▶

CVEList

CVE-2007-1491: Apache Tomcat in Avaya S87XX, S8500, and S8300 before CM 3↗2007-03-16

▶