Command Injection Vulnerability in Avaya Session Border Controller for Enterprise

Command Injection Vulnerability in Avaya Session Border Controller for Enterprise

CVE-2020-7034 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

A command injection vulnerability in Avaya Session Border Controller for Enterprise could allow an authenticated, remote attacker to send specially crafted messages and execute arbitrary commands with the affected system privileges. Affected versions of Avaya Session Border Controller for Enterprise include 7.x, 8.0 through 8.1.1.x

Learn more about our Web Application Penetration Testing UK.