CVE-2023-31186: Avaya IX Workforce Engagement - User Enumeration - CWE-204: Observable Response Discrepancy
First published: Tue May 30 2023(Updated: )
Avaya IX Workforce Engagement v15.2.7.1195 - User Enumeration - Observable Response Discrepancy
Credit: cna@cyber.gov.il
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Avaya IX Workforce Engagement | =15.2.7.1195 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2023-31186?
The severity of CVE-2023-31186 is medium with a severity value of 5.3.
How does CVE-2023-31186 affect Avaya IX Workforce Engagement v15.2.7.1195?
CVE-2023-31186 affects Avaya IX Workforce Engagement v15.2.7.1195 by allowing user enumeration through observable response discrepancy.
How can I fix CVE-2023-31186?
To fix CVE-2023-31186, it is recommended to apply the latest security patches or updates provided by Avaya.
What is CWE-203?
CWE-203 is a common weakness enumeration category for an Observable Response Discrepancy vulnerability.
Where can I find more information about CVE-2023-31186?
More information about CVE-2023-31186 can be found on the official Government of Israel website at https://www.gov.il/en/Departments/faq/cve_advisories
- collector/nvd-latest
- vendor/avaya
- vendor/ix workforce engagement
- collector/nvd-index
- agent/weakness
- agent/softwarecombine
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/author
- agent/severity
- agent/last-modified-date
- agent/references
- agent/description
- agent/tags
- agent/event
- agent/first-publish-date
- canonical/avaya ix workforce engagement
- version/avaya ix workforce engagement/15.2.7.1195