CyberSec.Space Logo
Back to CVE Browser

CVE-2020-7037

HIGH
8.1
CVSS Severity Score
EPSS Score0.1870%
EPSS Percentile35.45th
PublishedApr 28, 2021
Last ModifiedNov 21, 2024

Vulnerability Description

An XML External Entities (XXE) vulnerability in Media Server component of Avaya Equinox Conferencing could allow an authenticated, remote attacker to gain read access to information that is stored on an affected system or even potentially lead to a denial of service. The affected versions of Avaya Equinox Conferencing includes all 9.x versions before 9.1.11. Equinox Conferencing is now offered as Avaya Meetings Server.

Affected Platforms (CPE)

📦
Avaya

Equinox Conferencing

>= 9.0.0 and < 9.1.11

References & Advisories

🔗 https://support.avaya.com/css/P8/documents/101075574
🔗 https://support.avaya.com/css/P8/documents/101075574

Related Vulnerabilities

CVE-2020-70387.5

A vulnerability was discovered in Management component of Avaya Equinox Conferencing that could potentially allow an unauthenticat...

CVE-2020-70336.3

A Cross Site Scripting (XSS) Vulnerability on the Unified Portal Client (web client) used in Avaya Equinox Conferencing can allow ...

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...

CVE-2026-121905.3

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the compo...