Local Administrative User Exploitation in Avaya Call Management System Supervisor: Extracting Sensitive Information from Remote CMS Host

Local Administrative User Exploitation in Avaya Call Management System Supervisor: Extracting Sensitive Information from Remote CMS Host

CVE-2018-15615 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

A vulnerability in the Supervisor component of Avaya Call Management System allows local administrative user to extract sensitive information from users connecting to a remote CMS host. Affected versions of CMS Supervisor include R17.0.x and R18.0.x.

Learn more about our Cms Pen Testing.