36 matches found
EUVD-2012-6457
Malware in sbrugna...
EUVD-2012-4894
Malware in sbrugna...
EUVD-2012-6456
Malware in sbrugna...
EUVD-2025-21033
Malicious code in bioql PyPI...
CVE-2025-34093
An authenticated command injection vulnerability exists in the Polycom HDX Series command shell interface accessible over Telnet. The lan traceroute command in the devcmds console accepts unsanitized input, allowing attackers to execute arbitrary system commands. By injecting shell metacharacters...
CVE-2025-34093
An authenticated command injection vulnerability exists in the Polycom HDX Series command shell interface accessible over Telnet. The lan traceroute command in the devcmds console accepts unsanitized input, allowing attackers to execute arbitrary system commands. By injecting shell metacharacters...
CVE-2025-34093 Polycom HDX Series Telnet Command Injection via lan traceroute
An authenticated command injection vulnerability exists in the Polycom HDX Series command shell interface accessible over Telnet. The lan traceroute command in the devcmds console accepts unsanitized input, allowing attackers to execute arbitrary system commands. By injecting shell metacharacters...
CVE-2025-34093
Polycom HDX Series devices vulnerable to an authenticated command injection via the Telnet-based devcmds console. The lan traceroute command accepts unsanitized input, enabling arbitrary command execution as root. This is evidenced by references to a PoC/Metasploit module (polycom_hdx_traceroute_...
CVE-2025-34093 Polycom HDX Series Telnet Command Injection via lan traceroute
An authenticated command injection vulnerability exists in the Polycom HDX Series command shell interface accessible over Telnet. The lan traceroute command in the devcmds console accepts unsanitized input, allowing attackers to execute arbitrary system commands. By injecting shell metacharacters...
Polycom HDX Series 操作系统命令注入漏洞
The Polycom HDX Series is a series of high-definition video conferencing systems from Polycom, Inc. The Polycom HDX Series suffers from an operating system command injection vulnerability that stems from a command injection issue in the devcmds console that could lead to remote code execution...
PT-2025-29136 · Polycom · Polycom Hdx Series
Name of the Vulnerable Software and Affected Versions: Polycom HDX Series affected versions not specified Description: An authenticated command injection vulnerability exists in the Polycom HDX Series command shell interface accessible over Telnet. The lan traceroute command in the devcmds consol...
Command injection
An issue was discovered in Poly formerly Polycom HDX 3.1.13. A feature exists that allows the creation of a server / client certificate, or the upload of the user certificate, on the administrator's page. The value received from the user is the factor value of a shell script on the equipment. By...
Directory traversal
Directory traversal vulnerability in agetlog.cgi in Polycom HDX Video End Points before 3.0.4 and UC APL before 2.7.1.J allows remote attackers to read arbitrary files via a .. dot dot in the name parameter...
Command injection
Polycom HDX Video End Points before 3.0.4 and UC APL before 2.7.1.J allows remote authenticated users to execute arbitrary commands as demonstrated by a ; semicolon to the ping command feature...
CVE-2012-6609
Directory traversal vulnerability in agetlog.cgi in Polycom HDX Video End Points before 3.0.4 and UC APL before 2.7.1.J allows remote attackers to read arbitrary files via a .. dot dot in the name parameter...
CVE-2012-6610
Polycom HDX Video End Points before 3.0.4 and UC APL before 2.7.1.J allows remote authenticated users to execute arbitrary commands as demonstrated by a ; semicolon to the ping command feature...
Polycom HDX Operating System Command Injection Vulnerability
Polycom HDX is a high-definition video conferencing system from Polycom. A security vulnerability exists in Polycom HDX. An attacker could exploit the vulnerability to execute system commands with root privileges...
CVE-2012-6610
creationtimestamp| type| source ---|---|--- 2018-11-05 22:04:13+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/misc/polycomhdxauthbypass.rb 2025-10-23 21:12:57+00:00| seen| MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7...
CVE-2025-34093
creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/misc/polycomhdxtracerouteexec.rb 2025-10-23 21:13:04+00:00| seen| MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7...
Polycom HDX Endpoint Remote Code Execution Vulnerability
Polycom HDX is a high definition series of network cameras. A remote code execution vulnerability exists in the Polycom HDX endpoint. An attacker can exploit the vulnerability to execute arbitrary code within the context of an application. A failed exploit attack could result in a denial of servi...