Known Vulnerabilities for Ip Office by Avaya
Listed below are 7 of the newest known vulnerabilities associated with "Ip Office" by "Avaya".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-33755 | Group-Office is an enterprise customer relationship management and groupware tool. Prior to versions 6.8.158, 25.0.92, and 26... | Not Provided | 2026-03-27 | 2026-03-27 |
| CVE-2026-33673 | PrestaShop is an open source e-commerce web application. Versions prior to 8.2.5 and 9.1.0 are vulnerable to stored Cross-Sit... | Not Provided | 2026-03-26 | 2026-03-27 |
| CVE-2026-20963 | Deserialization of untrusted data in Microsoft Office SharePoint allows an unauthorized attacker to execute code over a netwo... | Not Provided | 2026-01-13 | 2026-04-01 |
| CVE-2025-32665 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WebbyTemplate Office Lo... | Not Provided | 2025-04-17 | 2026-04-01 |
| CVE-2024-52501 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Webb... | Not Provided | 2024-11-28 | 2026-04-01 |
| CVE-2021-25657 | A privilege escalation vulnerability was discovered in Avaya IP Office Admin Lite and USB Creator that may potentially allow ... | 7.8 - HIGH | 2022-09-02 | 2022-09-07 |
| CVE-2020-7030 | A sensitive information disclosure vulnerability was discovered in the web interface component of IP Office that may potentia... | 5.5 - MEDIUM | 2020-06-04 | 2020-06-09 |
| CVE-2019-7005 | A vulnerability was discovered in the web interface component of IP Office that may potentially allow a remote, unauthenticat... | 7.5 - HIGH | 2020-08-07 | 2023-11-07 |
| CVE-2018-15614 | A vulnerability in the one-x Portal component of IP Office could allow an authenticated user to perform stored cross site scr... | 5.4 - MEDIUM | 2019-01-23 | 2019-10-09 |
| CVE-2018-15610 | A vulnerability in the one-X Portal component of Avaya IP Office allows an authenticated attacker to read and delete arbitrar... | 8.8 - HIGH | 2018-09-12 | 2019-10-03 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Avaya | Ip Office | 9.1 | sp9 | All | All |
| Application | Avaya | Ip Office | 9.1 | sp8 | All | All |
| Application | Avaya | Ip Office | 9.1 | sp7 | All | All |
| Application | Avaya | Ip Office | 9.1 | sp6 | All | All |
| Application | Avaya | Ip Office | 9.1 | sp5 | All | All |
| Application | Avaya | Ip Office | 9.1 | sp4 | All | All |
| Application | Avaya | Ip Office | 9.1 | sp3 | All | All |
| Application | Avaya | Ip Office | 9.1 | sp12 | All | All |
| Application | Avaya | Ip Office | 9.1 | sp11 | All | All |
| Application | Avaya | Ip Office | 9.1 | sp10 | All | All |
| Application | Avaya | Ip Office | 9.1 | sp1 | All | All |
| Application | Avaya | Ip Office | 9.1 | - | All | All |
| Application | Avaya | Ip Office | 9.0 | - | All | All |
| Application | Avaya | Ip Office | 9.0 | sp8 | All | All |
| Application | Avaya | Ip Office | 9.0 | sp7 | All | All |
| Application | Avaya | Ip Office | 9.0 | sp6 | All | All |
| Application | Avaya | Ip Office | 9.0 | sp5 | All | All |
| Application | Avaya | Ip Office | 9.0 | sp4 | All | All |
| Application | Avaya | Ip Office | 9.0 | sp3 | All | All |
| Application | Avaya | Ip Office | 9.0 | sp2 | All | All |