CVE-2024-7477
Description
A SQL injection vulnerability was found which could allow a command line interface (CLI) user with administrative privileges to execute arbitrary queries against the Avaya Aura System Manager database. <br />
<br />
Affected versions include 10.1.x.x and 10.2.x.x. Versions prior to 10.1 are end of manufacturer support.
Impact
Base Score 3.x
6.50
Severity 3.x
MEDIUM