CVE-2018-15615

A vulnerability in the Supervisor component of Avaya Call Management System allows local administrative user to extract sensitive information from users connecting to a remote CMS host. Affected versions of CMS Supervisor include R17.0.x and R18.0.x. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt