First published: Tue Feb 26 2019(Updated: )
Avaya one-X Communicator uses weak cryptographic algorithms in the client authentication component that could allow a local attacker to decrypt sensitive information. Affected versions include all 6.2.x versions prior to 6.2 SP13.
Credit: securityalerts@avaya.com securityalerts@avaya.com
Affected Software | Affected Version | How to fix |
---|---|---|
Avaya one-X Communicator | =6.2 | |
Avaya one-X Communicator | =6.2-fp10 | |
Avaya one-X Communicator | =6.2-fp3 | |
Avaya one-X Communicator | =6.2-fp4 | |
Avaya one-X Communicator | =6.2-fp6 | |
Avaya one-X Communicator | =6.2-sp1 | |
Avaya one-X Communicator | =6.2-sp12 | |
Avaya one-X Communicator | =6.2-sp2 | |
Avaya one-X Communicator | =6.2-sp5 | |
Avaya one-X Communicator | =6.2-sp7 | |
=6.2 | ||
=6.2-fp10 | ||
=6.2-fp3 | ||
=6.2-fp4 | ||
=6.2-fp6 | ||
=6.2-sp1 | ||
=6.2-sp12 | ||
=6.2-sp2 | ||
=6.2-sp5 | ||
=6.2-sp7 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-7006 is a vulnerability in Avaya one-X Communicator that uses weak cryptographic algorithms in the client authentication component, allowing a local attacker to decrypt sensitive information.
The affected versions include all 6.2.x versions prior to 6.2 SP13.
The severity of CVE-2019-7006 is medium with a severity score of 5.5.
A local attacker can exploit CVE-2019-7006 by using weak cryptographic algorithms to decrypt sensitive information.
Yes, you can find more information on CVE-2019-7006 at the following references: [1](http://www.securityfocus.com/bid/107175), [2](https://downloads.avaya.com/css/P8/documents/101055601), [3](https://downloads.avaya.com/css/P8/documents/101055661)