CyberSec.Space Logo
Back to CVE Browser

CVE-2019-7000

MEDIUM
6.1
CVSS Severity Score
EPSS Score0.0340%
EPSS Percentile22.74th
PublishedJul 31, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

A Cross-Site Scripting (XSS) vulnerability in the Web UI of Avaya Aura Conferencing may allow code execution and potentially disclose sensitive information. Affected versions of Avaya Aura Conferencing include all 8.x versions prior to 8.0 SP14 (8.0.14). Prior versions not listed were not evaluated.

Affected Platforms (CPE)

πŸ“¦
Avaya

Aura Conferencing

<= 8.0
πŸ“¦
Avaya

Aura Conferencing

= 8.0
πŸ“¦
Avaya

Aura Conferencing

= 8.0
πŸ“¦
Avaya

Aura Conferencing

= 8.0
πŸ“¦
Avaya

Aura Conferencing

= 8.0
πŸ“¦
Avaya

Aura Conferencing

= 8.0
πŸ“¦
Avaya

Aura Conferencing

= 8.0
πŸ“¦
Avaya

Aura Conferencing

= 8.0
πŸ“¦
Avaya

Aura Conferencing

= 8.0
πŸ“¦
Avaya

Aura Conferencing

= 8.0
πŸ“¦
Avaya

Aura Conferencing

= 8.0

References & Advisories

πŸ”— https://downloads.avaya.com/css/P8/documents/101060208
πŸ”— https://downloads.avaya.com/css/P8/documents/101060208

Related Vulnerabilities

CVE-2026-53430

Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Mes...

CVE-2026-48854

Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust...

CVE-2026-48853

Deserialization of Untrusted Data and Allocation of Resources Without Limits or Throttling vulnerabilities in elixir-grpc grpc all...

CVE-2026-487237.8

The browserstack-cypress-cli is BrowserStack's CLI which allows users to run Cypress tests on BrowserStack. Versions prior to 1.36...