CVE-2020-7038

HIGH

Avaya Equinox Conferencing 9.0.0-9.1.11 - Unauthenticated Access to Screen Sharing and Whiteboard Sessions

Title source: llm
STIX 2.1

Description

A vulnerability was discovered in Management component of Avaya Equinox Conferencing that could potentially allow an unauthenticated, remote attacker to gain access to screen sharing and whiteboard sessions. The affected versions of Management component of Avaya Equinox Conferencing include all 3.x versions before 3.17. Avaya Equinox Conferencing is now offered as Avaya Meetings Server.

References (1)

Core 1
Core References
Vendor Advisory x_refsource_confirm
https://support.avaya.com/css/P8/documents/101075574

Scores

CVSS v3 7.5
EPSS 0.0130
EPSS Percentile 67.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-284
Status published
Products (1)
avaya/equinox_conferencing 9.0.0 - 9.1.11
Published Apr 28, 2021
Tracked Since Feb 18, 2026