CVE-2024-4196 Information

Description

An improper input validation vulnerability was discovered in Avaya IP Office that could allow remote command or code execution via a specially crafted web request to the Web Control component. Affected versions include all versions prior to 11.1.3.1.

Reference

https://download.avaya.com/css/public/documents/101090768