CVE-2019-12948

A vulnerability in the web-based management interface of VVX, Trio, SoundStructure, SoundPoint, and SoundStation phones running Polycom UC Software, if exploited, could allow an authenticated, remote attacker with admin privileges to cause a denial of service DoS condition or execute arbitrary co...

Polycom UC Software Information Disclosure Vulnerability

Polycom UC Software is a set of unified communications software platform from Polycom USA. The platform supports IM Instant Messaging, video conferencing and voice communications. An information disclosure vulnerability exists in Polycom UC Software versions prior to 5.9.2. The vulnerability aris...

Polycom RealPresence Debut Information Disclosure Vulnerability

Polycom RealPresence Debut is an enterprise-grade small video conferencing solution from Polycom, Inc. A vulnerability with trust management issues exists in versions prior to Polycom RealPresence Debut 1.3.0-66872. The vulnerability stems from the lack of an effective trust management mechanism ...

Design/Logic Flaw

An issue was discovered in versions earlier than 1.3.2 for Polycom RealPresence Debut where the admin cookie is reset only after a Debut is rebooted...

CVE-2018-10947

An issue was discovered in versions earlier than 1.3.2 for Polycom RealPresence Debut where the admin cookie is reset only after a Debut is rebooted...

Design/Logic Flaw

An issue was discovered in versions earlier than 1.3.0-66872 for Polycom RealPresence Debut that allows attackers to arbitrarily read the admin user's password via the admin web UI...

CVE-2018-10946

An issue was discovered in versions earlier than 1.3.0-66872 for Polycom RealPresence Debut that allows attackers to arbitrarily read the admin user's password via the admin web UI...

CVE-2018-10947

An issue was discovered in versions earlier than 1.3.2 for Polycom RealPresence Debut where the admin cookie is reset only after a Debut is rebooted...

CVE-2018-10946

An issue was discovered in versions earlier than 1.3.0-66872 for Polycom RealPresence Debut that allows attackers to arbitrarily read the admin user's password via the admin web UI...

CVE-2018-10947

CVE-2018-10947 affects Polycom RealPresence Debut before version 1.3.2. The root cause is that the admin cookie is reset only after a Debut device is rebooted, leaving session handling unchanged until reboot. Impact details in the provided sources are limited to this behavior; no exploitation spe...

CVE-2018-10947

An issue was discovered in versions earlier than 1.3.2 for Polycom RealPresence Debut where the admin cookie is reset only after a Debut is rebooted...

CVE-2018-10946

Polycom RealPresence Debut vulnerable in versions earlier than 1.3.0-66872. The flaw lets an attacker read the admin user’s password via the admin web UI. Affected component is the device’s admin interface; root cause involves unsafe password exposure in the UI flow. Impacts include confidentiali...

CVE-2018-10946

An issue was discovered in versions earlier than 1.3.0-66872 for Polycom RealPresence Debut that allows attackers to arbitrarily read the admin user's password via the admin web UI...

CVE-2018-15128

An issue was discovered in Polycom Group Series 6.1.6.1 and earlier, HDX 3.1.12 and earlier, and Pano 1.1.1 and earlier. A remote code execution vulnerability exists in the content sharing functionality because of a Buffer Overflow via crafted packets...

CVE-2018-15128

An issue was discovered in Polycom Group Series 6.1.6.1 and earlier, HDX 3.1.12 and earlier, and Pano 1.1.1 and earlier. A remote code execution vulnerability exists in the content sharing functionality because of a Buffer Overflow via crafted packets...

Remote code execution

An issue was discovered in Polycom Group Series 6.1.6.1 and earlier, HDX 3.1.12 and earlier, and Pano 1.1.1 and earlier. A remote code execution vulnerability exists in the content sharing functionality because of a Buffer Overflow via crafted packets...

CVE-2018-15128

CVE-2018-15128 affects Polycom Group Series 6.1.6.1 and earlier, HDX 3.1.12 and earlier, and Pano 1.1.1 and earlier. The issue is a remote code execution in the content sharing feature caused by a buffer overflow triggered by crafted packets. The available documents identify the products and vuln...

CVE-2018-15128

An issue was discovered in Polycom Group Series 6.1.6.1 and earlier, HDX 3.1.12 and earlier, and Pano 1.1.1 and earlier. A remote code execution vulnerability exists in the content sharing functionality because of a Buffer Overflow via crafted packets...

Polycom HDX Operating System Command Injection Vulnerability

Polycom HDX is a high-definition video conferencing system from Polycom. A security vulnerability exists in Polycom HDX. An attacker could exploit the vulnerability to execute system commands with root privileges...

Polycom Trio Improper Access Control Vulnerability

Polycom Trio is a Polycom Trio series of business conference phones.The Bluetooth subsystem is one of the Bluetooth subsystems. A security vulnerability exists in the Bluetooth subsystem on Polycom Trio using software versions prior to 5.5.4, which stems from the program failing to enforce proper...