CVE-2024-12756

High CVSS: 7.3

An HTML Injection vulnerability in Avaya Spaces may have allowed disclosure of sensitive information or modification of the page content seen by the user.

Vendor

Avaya

Product

Spaces

CWE

CWE-1287

Yayın Tarihi

2025-02-11 17:15:21

Güncelleme

2025-10-01 02:15:31

Source Identifier

securityalerts@avaya.com

KEV Date Added

Kategoriler

CWE-1287 Spaces HIGH Avaya 2025

Referanslar

https://support.avaya.com/css/public/documents/101091836

Benzer Kayıtlar

Medium

CVE-2025-49186

The product does not implement sufficient measures to prevent multiple failed authentication attempts within a short tim…

Critical

CVE-2025-1041

An improper input validation discovered in Avaya Call Management System could allow an unauthorized remote command v…

High

CVE-2024-12755

A Cross-Site Scripting (XSS) vulnerability in Avaya Spaces may have allowed unauthorized code execution and potential di…