2 matches found
CVE-2024-6147
CVE-2024-6147 affects Poly Plantronics Hub, specifically the Spokes Update Service. A local attacker who can run low-privilege code can abuse symbolic links to delete files and escalate to SYSTEM, enabling arbitrary code execution. The available connected documents confirm local-privilege escalat...
CVE-2024-27460
CVE-2024-27460 affects HP Plantronics Hub up to version 3.25.1, including the updater component. The Red Hat/NVD entries confirm a privilege-escalation vulnerability in the Plantronics Hub updater that can be triggered by a low-privileged user. Public PoCs and exploit listings describe an Arbitra...