Overview
- Description
- A privilege escalation vulnerability was discovered in Avaya IP Office Admin Lite and USB Creator that may potentially allow a local user to escalate privileges. This issue affects Admin Lite and USB Creator 11.1 Feature Pack 2 Service Pack 1 and earlier versions.
- Source
- securityalerts@avaya.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
- securityalerts@avaya.com
- CWE-269
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:avaya:ip_office:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A85DBDAD-4D2A-43EF-A487-AC5A1AAB8766",
"versionEndExcluding": "11.1"
},
{
"criteria": "cpe:2.3:a:avaya:ip_office:11.1:-:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "26753680-2F84-40F7-87FD-5B5D63B2F5C5"
},
{
"criteria": "cpe:2.3:a:avaya:ip_office:11.1:feature_pack1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6F3B61F2-3809-4001-BC62-2CAB62E363EF"
},
{
"criteria": "cpe:2.3:a:avaya:ip_office:11.1:feature_pack1_service_pack1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "696C872E-B4C4-49BA-ABCD-03BC2451EBDC"
},
{
"criteria": "cpe:2.3:a:avaya:ip_office:11.1:feature_pack2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C621F009-9229-4F67-8EB1-4DCB31F553F1"
},
{
"criteria": "cpe:2.3:a:avaya:ip_office:11.1:feature_pack2_service_pack1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F69EDA65-AD4A-42D6-8AD0-0FF09142E183"
}
],
"operator": "OR"
}
]
}
]