NVD

Vulnerability Change Records for CVE-2018-8812

Action	Type	Old Value	New Value
Removed	CPE Configuration	OR cpe:2.3:a:avaya:ip_office::::::::* versions up to (including) 9.1.2.0
Removed	CVSS V2	(AV:N/AC:L/Au:N/C:N/I:P/A:P)
Removed	CVSS V3	AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
Removed	CWE	CWE-20
Changed	Description	An issue was discovered in Avaya one-X Portal for IP Office 9.1.2.0 and prior. The DownloadToLocalDriveServlet function from the AFA portal is only intended to download backup ZIP files from the server to the operator desktop; however, a malicious user capable of intercepting the HTTP request would be able to modify folder and filename parameters in order to get access to any file on the underlying operating system, as demonstrated by a folder=/etc/&filename=passwd query string. Additionally it could cause a DoS, as this functions also implements file deletion after downloading.	REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2018-15610. Reason: This candidate is a reservation duplicate of CVE-2018-15610. Notes: All CVE users should reference CVE-2018-15610 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.
Changed	Display Vulnerability	true	false
Removed	Reference	http://avaya.com [Vendor Advisory]
Removed	Reference	http://one-x.com [Product]
Removed	Reference	https://packetstormsecurity.com/files/149284/Avaya-one-X-9.x-10.0.x-10.1.x-Arbitrary-File-Disclosure-Deletion.html [Exploit, Third Party Advisory, VDB Entry]