Release Date 29th March 2021 Overview If users have the Access Control integration enabled, in the Users -> Roles dialog, there's a toggle called...

Release Date 18th March 2021. Overview Any logged in Ava Aware user could read and modify maps without having the appropriate site permissions. Affected...

Release Date 2nd March 2021. Overview A vulnerability in Ava Cloud made it possible for an unauthenticated attacker to create Ava Aware Cloud deployments...

Release Date 22nd February 2021. Overview Unsafe handling of RTP media streams can cause an out of memory crash loop in the RTP receiver and thus a DOS o...

Release Date 4th February 2021. Overview An attacker could perform denial-of-service attacks to Ava Aware, Ava Cameras, and Ava Cloud using unauthenticat...

Ava-368: Permissions not enforced on certain Ava Aware APIs Release Date 18th January 2021. Overview Permissions were not correctly enforced on ce...

Ava-349: Denial of service vulnerability in Ava Aware on premise and Ava cameras Release Date 18th December 2020. Overview A vulnerability in a third pa...

Ava-350: Ava Cloud user able to escalate their privileges on Ava Aware Release Date 18th December 2020. Overview An Ava Aware user that enters dep...

Ava-337: Hashed cloud backup password retrievable using the Ava Aware API Release Date 18th December 2020. Overview An authenticated user can make...

Ava-345: Permissions not enforced for certain Ava Aware alarm APIs Release Date 10th December 2020. Overview An Ava Aware user without the appropr...