Remote Code Execution Vulnerability in Avaya Aura System Platform Web UI

Remote Code Execution Vulnerability in Avaya Aura System Platform Web UI

CVE-2018-15616 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

A vulnerability in the Web UI component of Avaya Aura System Platform could allow a remote, unauthenticated user to perform a targeted deserialization attack that could result in remote code execution. Affected versions of System Platform includes 6.3.0 through 6.3.9 and 6.4.0 through 6.4.2.

Learn more about our Web App Pen Testing.