CyberSec.Space Logo
CVEブラウザに戻る

CVE-2020-7037

HIGH
8.1
CVSS Severity Score
EPSS Score0.1870%
EPSS Percentile35.45th
Published2021年4月28日
Last Modified2024年11月21日

Vulnerability Description

An XML External Entities (XXE) vulnerability in Media Server component of Avaya Equinox Conferencing could allow an authenticated, remote attacker to gain read access to information that is stored on an affected system or even potentially lead to a denial of service. The affected versions of Avaya Equinox Conferencing includes all 9.x versions before 9.1.11. Equinox Conferencing is now offered as Avaya Meetings Server.

Affected Platforms (CPE)

📦
Avaya

Equinox Conferencing

>= 9.0.0 and < 9.1.11

References & Advisories

🔗 https://support.avaya.com/css/P8/documents/101075574
🔗 https://support.avaya.com/css/P8/documents/101075574

関連する脆弱性情報

CVE-2020-70387.5

A vulnerability was discovered in Management component of Avaya Equinox Conferencing that could potentially allow an unauthenticat...

CVE-2020-70336.3

A Cross Site Scripting (XSS) Vulnerability on the Unified Portal Client (web client) used in Avaya Equinox Conferencing can allow ...

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...

CVE-2026-121905.3

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the compo...