cvedb.io
CVE-2018-15615
HIGH · CVSS 7.2
EPSS exploitation probability: 0%
Published 2018-09-24T12:29:00.237 · Last modified 2026-06-17T01:42:50.837

Summary

A vulnerability in the Supervisor component of Avaya Call Management System allows local administrative user to extract sensitive information from users connecting to a remote CMS host. Affected versions of CMS Supervisor include R17.0.x and R18.0.x.

Affected products

avaya — call_management_system_supervisor

Does this affect you?

Add your gear to cvedb and we'll alert you only when avaya ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.