CVE-2021-37145

A command-injection vulnerability in an authenticated Telnet connection in Poly formerly Polycom CX5500 and CX5100 1.3.5 leads an attacker to Privilege Escalation and Remote Code Execution capability. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...

Command injection

UNSUPPORTED WHEN ASSIGNED A command-injection vulnerability in an authenticated Telnet connection in Poly formerly Polycom CX5500 and CX5100 1.3.5 leads an attacker to Privilege Escalation and Remote Code Execution capability. NOTE: This vulnerability only affects products that are no longer...

Poly CX5500和Poly CX5100 命令注入漏洞

Poly CX5500 and Poly CX5100 are a set of products used for video calls from the U.S. Poly CX5500 and CX5100 have an access control error vulnerability that could be exploited to gain elevated privileges and remote code execution capabilities using an authenticated Telnet connection...

PT-2021-21528 · Poly · Poly Cx5500 +1

Name of the Vulnerable Software and Affected Versions: Poly CX5500 and CX5100 version 1.3.5 Description: A command-injection vulnerability in an authenticated Telnet connection leads to Privilege Escalation and Remote Code Execution capability. This issue only affects products that are no longer...