Avaya Aura System Manager CVE-2018-6635 Security Bypass Vulnerability

Bugtraq ID: 102940
Class: Access Validation Error
CVE: CVE-2018-6635
Remote: Yes
Local: No
Published: Feb 05 2018 12:00AM
Updated: Feb 05 2018 12:00AM
Credit: The vendor reported this issue.
Vulnerable: Avaya Aura Utility Services 7.0
Avaya Aura Utility Services 6.3
+ Avaya Communication Manager Server DEFINITY Server SI/CS
+ Avaya Communication Manager Server S8100
+ Avaya Communication Manager Server S8300
+ Avaya Communication Manager Server S8500
+ Avaya Communication Manager Server S8700
Avaya Aura Utility Services 6.2
+ Avaya Communication Manager Server DEFINITY Server SI/CS
+ Avaya Communication Manager Server S8100
+ Avaya Communication Manager Server S8300
+ Avaya Communication Manager Server S8500
+ Avaya Communication Manager Server S8700
Avaya Aura Utility Services 6.0
Avaya Aura System Manager 6.3.10
Avaya Aura System Manager 6.3.6
Avaya Aura System Manager 6.3.4
Avaya Aura System Manager 6.3.2
Avaya Aura System Manager 6.3.1
Avaya Aura System Manager 7.0
Avaya Aura System Manager 6.3.3
Avaya Aura System Manager 6.3
Avaya Aura System Manager 6.2.4
Avaya Aura System Manager 6.2.3
Avaya Aura System Manager 6.2
Avaya Aura System Manager 6.1.7
Avaya Aura System Manager 6.1.5
Avaya Aura System Manager 6.1.3
Avaya Aura System Manager 6.1.2
Avaya Aura System Manager 6.1.1
Avaya Aura System Manager 6.1
Avaya Aura System Manager 6.0
Avaya Aura System Manager 5.2
Avaya Aura System Manager 5.0
Avaya Aura Session Manager 6.3.1
Avaya Aura Session Manager 6.2.1
Avaya Aura Session Manager 6.1.5
Avaya Aura Session Manager 6.1.3
Avaya Aura Session Manager 6.1.2
Avaya Aura Session Manager 6.1.1
Avaya Aura Session Manager 6.0.1
Avaya Aura Session Manager 7.0
Avaya Aura Session Manager 6.3.3
Avaya Aura Session Manager 6.3
Avaya Aura Session Manager 6.2.4
Avaya Aura Session Manager 6.2.3
Avaya Aura Session Manager 6.2.2
Avaya Aura Session Manager 6.2
Avaya Aura Session Manager 6.1.7
Avaya Aura Session Manager 6.1
Avaya Aura Session Manager 6.0.2
Avaya Aura Session Manager 6.0
Avaya Aura Presence Services 6.1.2
Avaya Aura Presence Services 6.1.1
Avaya Aura Presence Services 6.2
Avaya Aura Presence Services 6.1
Avaya Aura Presence Services 6.0
Avaya Aura Communication Manager Messaging 7.0
Avaya Aura Communication Manager 6.3.8
Avaya Aura Communication Manager 7.0
Avaya Aura Communication Manager 6.3
+ Avaya Communication Manager Server DEFINITY Server SI/CS
+ Avaya Communication Manager Server S8100
+ Avaya Communication Manager Server S8300
+ Avaya Communication Manager Server S8500
+ Avaya Communication Manager Server S8700
Avaya Aura Communication Manager 6.2
+ Avaya Communication Manager Server DEFINITY Server SI/CS
+ Avaya Communication Manager Server S8100
+ Avaya Communication Manager Server S8300
+ Avaya Communication Manager Server S8500
+ Avaya Communication Manager Server S8700
Avaya Aura Communication Manager 6.0.1
+ Avaya Communication Manager Server DEFINITY Server SI/CS
+ Avaya Communication Manager Server S8100
+ Avaya Communication Manager Server S8300
+ Avaya Communication Manager Server S8500
+ Avaya Communication Manager Server S8700
Avaya Aura Communication Manager 6.0
+ Avaya Communication Manager Server DEFINITY Server SI/CS
+ Avaya Communication Manager Server S8100
+ Avaya Communication Manager Server S8300
+ Avaya Communication Manager Server S8500
+ Avaya Communication Manager Server S8700
Avaya Aura Application Enablement Services 6.2
Avaya Aura Application Enablement Services 7.0
Avaya Aura Application Enablement Services 6.3
Avaya Aura Application Enablement Services 6.2
Avaya Aura Application Enablement Services 6.1.2
Avaya Aura Application Enablement Services 6.1.1
Avaya Aura Application Enablement Services 6.1
Avaya Aura Application Enablement Services 6.0
Not Vulnerable: Avaya Aura Utility Services 7.1.2
Avaya Aura System Manager 7.1.2
Avaya Aura Session Manager 7.1.2
Avaya Aura Presence Services 7.1.2
Avaya Aura Communication Manager Messaging 7.1.2
Avaya Aura Communication Manager 7.1.2
Avaya Aura Application Enablement Services 7.1.2


 

Privacy Statement
Copyright 2010, SecurityFocus