2 matches found
CVE-2018-7564
CVE-2018-7564 is a stored XSS vulnerability in the Web application of Polycom QDX 6000 devices. The issue is documented across multiple sources (NVD/NVD CVE entry, CNVD, PRION, CVE listing) as a Cross‑Site Scripting flaw that allows arbitrary JavaScript execution in a user’s browser when interact...
CVE-2018-7565
Polycom QDX 6000 devices expose a web interface CSRF vulnerability (CVE-2018-7565) that could allow a remote attacker to change arbitrary configuration settings. The CNVD entry confirms the issue as Cross-Site Request Forgery in the web application interface, with impact described as potential ch...