10 matches found
CVE-2021-37145
A command-injection vulnerability in an authenticated Telnet connection in Poly formerly Polycom CX5500 and CX5100 1.3.5 leads an attacker to Privilege Escalation and Remote Code Execution capability. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...
The vulnerability of the microprogramming software used in Polycom CX5100 and CX5500 teleconferencing stations stems from the lack of measures taken to neutralize special elements used in the operating system. This allows attackers to exploit their privileges.
The vulnerability of the microprogramming software used in Polycom CX5100 and CX5500 conference call stations exists due to the lack of measures taken to neutralize the special elements used in the operating system. Exploiting this vulnerability can allow attackers to enhance their privileges...
Poly CX5500 and CX5100 Access Control Error Vulnerability
Poly CX5500 and Poly CX5100 are a set of products used for video calls from the U.S. Poly CX5500 and CX5100 have an access control error vulnerability that could be exploited to gain elevated privileges and remote code execution capabilities using an authenticated Telnet connection...
CVE-2021-37145
A command-injection vulnerability in an authenticated Telnet connection in Poly formerly Polycom CX5500 and CX5100 1.3.5 leads an attacker to Privilege Escalation and Remote Code Execution capability. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...
CVE-2021-37145
A command-injection vulnerability in an authenticated Telnet connection in Poly formerly Polycom CX5500 and CX5100 1.3.5 leads an attacker to Privilege Escalation and Remote Code Execution capability. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...
Command injection
UNSUPPORTED WHEN ASSIGNED A command-injection vulnerability in an authenticated Telnet connection in Poly formerly Polycom CX5500 and CX5100 1.3.5 leads an attacker to Privilege Escalation and Remote Code Execution capability. NOTE: This vulnerability only affects products that are no longer...
CVE-2021-37145
A command-injection vulnerability in an authenticated Telnet connection in Poly formerly Polycom CX5500 and CX5100 1.3.5 leads an attacker to Privilege Escalation and Remote Code Execution capability. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...
CVE-2021-37145
Poly CX5500 and CX5100 (version 1.3.5) expose a command-injection vulnerability over an authenticated Telnet session, enabling Privilege Escalation and Remote Code Execution. Root cause: unauthenticated? no, authenticated Telnet path; exploitation details not fully specified in the provided docum...
PT-2021-21528 · Poly · Poly Cx5500 +1
Name of the Vulnerable Software and Affected Versions: Poly CX5500 and CX5100 version 1.3.5 Description: A command-injection vulnerability in an authenticated Telnet connection leads to Privilege Escalation and Remote Code Execution capability. This issue only affects products that are no longer...
Poly CX5500和Poly CX5100 命令注入漏洞
Poly CX5500 and Poly CX5100 are a set of products used for video calls from the U.S. Poly CX5500 and CX5100 have an access control error vulnerability that could be exploited to gain elevated privileges and remote code execution capabilities using an authenticated Telnet connection...