2 matches found
CVE-2023-24282
The connected source CNNVD-202303-656 confirms a concrete vulnerability in Poly Trio 8800, version 7.2.2.1094, where an arbitrary file upload flaw can be exploited to execute arbitrary code via a crafted ringtone file. This defines the affected product/version and the root cause (unrestricted fil...
CVE-2023-24282
An arbitrary file upload vulnerability in Poly Trio 8800 7.2.2.1094 allows attackers to execute arbitrary code via a crafted ringtone file...