CVE-2007-5830

CWE-20 — Improper Input Validation3 documents3 sources

Severity

7.8HIGH

EPSS

0.7%

top 28.92%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Avaya Message Networking Avaya Messaging Storage Server

Timeline

PublishedNov 5

Latest updateMay 1

Description

Unspecified vulnerability in the administrative interface in Avaya Messaging Storage Server (MSS) 3.1 before SP1, and Message Networking (MN) 3.1, allows remote attackers to cause a denial of service via unspecified vectors related to "input validation."

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages2 packages

▶NVDavaya/messaging_storage_server3.1

▶NVDavaya/message_networking3.1

Patches

Patch: support.avaya.com ↗Patch: support.avaya.com ↗

🔴Vulnerability Details

GHSA

GHSA-8c59-347w-2hff: Unspecified vulnerability in the administrative interface in Avaya Messaging Storage Server (MSS) 3↗2022-05-01

▶

CVEList

CVE-2007-5830: Unspecified vulnerability in the administrative interface in Avaya Messaging Storage Server (MSS) 3↗2007-11-05

▶