Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:41 a.m.9 views

CVE-2022-26479

An issue was discovered in Poly EagleEye Director II before 2.2.2.1. Existence of a certain file which can be created via an rsync backdoor causes all API calls to execute as admin without authentication...

9.8CVSS7.1AI score0.01729EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:41 a.m.6 views

CVE-2022-26482

An issue was discovered in Poly EagleEye Director II before 2.2.2.1. os.system command injection can be achieved by an admin...

7.2CVSS7.4AI score0.22337EPSS
Exploits3References1
OSV
OSV
added 2022/07/17 11:15 p.m.4 views

CVE-2022-26482

An issue was discovered in Poly EagleEye Director II before 2.2.2.1. os.system command injection can be achieved by an admin...

7.2CVSS5.8AI score0.22337EPSS
Exploits3References3
Prion
Prion
added 2022/07/17 11:15 p.m.14 views

Command injection

An issue was discovered in Poly EagleEye Director II before 2.2.2.1. os.system command injection can be achieved by an admin...

5.8CVSS7.8AI score0.22337EPSS
Exploits3References3Affected Software1
Prion
Prion
added 2022/07/17 11:15 p.m.15 views

Authentication flaw

An issue was discovered in Poly EagleEye Director II before 2.2.2.1. Existence of a certain file which can be created via an rsync backdoor causes all API calls to execute as admin without authentication...

7.5CVSS9.4AI score0.01729EPSS
Exploits3References3Affected Software1
CVE
CVE
added 2022/07/17 10:4 p.m.60 views

CVE-2022-26482

Poly EagleEye Director II (pre-2.2.2.1) exposes an OS command injection via os.system that can be performed by an admin. Affected product/version: Poly EagleEye Director II prior to 2.2.2.1. Impact (per NVD): high severity (CVSSv3.1 base score 7.2) with high confidentiality, integrity, and availa...

7.2CVSS7.3AI score0.22337EPSS
Exploits3References3Affected Software1
CVE
CVE
added 2022/07/17 10:1 p.m.774 views

CVE-2022-26479

Poly EagleEye Director II (pre-2.2.2.1) contains an authentication bypass vulnerability where the existence of a certain file (creatable via an rsync backdoor) causes all API calls to run with admin privileges. Affected component/file path is unspecified in the initial documents; root cause is an...

9.8CVSS9.4AI score0.01729EPSS
Exploits3References3Affected Software1
0day.today
0day.today
added 2022/06/07 12:0 a.m.370 views

Poly EagleEye Director II 2.2.1.1 Command Injection / Authentication Bypass Vulnerability

======================================================================= title: Multiple Critical Vulnerabilities product: Poly EagleEye Director II vulnerable version: 2.2.1.1 Jul 1, 2021 fixed version: 2.2.2.1 or higher CVE number: CVE-2022-26479, CVE-2022-26482 impact: critical homepage:...

9.8CVSS0.5AI score0.22337EPSS
Exploits4
Rows per page
Query Builder