Vulnerability Details CVE-2019-12948
A vulnerability in the web-based management interface of VVX, Trio, SoundStructure, SoundPoint, and SoundStation phones running Polycom UC Software, if exploited, could allow an authenticated, remote attacker with admin privileges to cause a denial of service (DoS) condition or execute arbitrary code.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.013
EPSS Ranking 78.5%
CVSS Severity
CVSS v3 Score 8.3
CVSS v2 Score 6.5
References
Products affected by CVE-2019-12948
-
cpe:2.3:h:polycom:c12:-
-
cpe:2.3:h:polycom:c16:-
-
cpe:2.3:h:polycom:c8:-
-
cpe:2.3:h:polycom:soundpoint_ip_300:-
-
cpe:2.3:h:polycom:soundpoint_ip_301:-
-
cpe:2.3:h:polycom:soundpoint_ip_320:-
-
cpe:2.3:h:polycom:soundpoint_ip_321:-
-
cpe:2.3:h:polycom:soundpoint_ip_330:-
-
cpe:2.3:h:polycom:soundpoint_ip_331:-
-
cpe:2.3:h:polycom:soundpoint_ip_335:-
-
cpe:2.3:h:polycom:soundpoint_ip_430:-
-
cpe:2.3:h:polycom:soundpoint_ip_450:-
-
cpe:2.3:h:polycom:soundpoint_ip_500:-
-
cpe:2.3:h:polycom:soundpoint_ip_501:-
-
cpe:2.3:h:polycom:soundpoint_ip_550:-
-
cpe:2.3:h:polycom:soundpoint_ip_560:-
-
cpe:2.3:h:polycom:soundpoint_ip_600:-
-
cpe:2.3:h:polycom:soundpoint_ip_601:-
-
cpe:2.3:h:polycom:soundpoint_ip_650:-
-
cpe:2.3:h:polycom:soundpoint_ip_670:-
-
cpe:2.3:h:polycom:soundpoint_pro_se-220:-
-
cpe:2.3:h:polycom:soundpoint_pro_se-225:-
-
cpe:2.3:h:polycom:soundstation2:-
-
cpe:2.3:h:polycom:soundstation2_avaya_2490:-
-
cpe:2.3:h:polycom:soundstation2_direct_connect_for_nortel:-
-
cpe:2.3:h:polycom:soundstation2w:-
-
cpe:2.3:h:polycom:soundstation_duo:-
-
cpe:2.3:h:polycom:soundstation_ip_4000:-
-
cpe:2.3:h:polycom:soundstation_ip_5000:-
-
cpe:2.3:h:polycom:soundstation_ip_6000:-
-
cpe:2.3:h:polycom:soundstation_ip_7000:-
-
cpe:2.3:h:polycom:soundstation_ip_7000_video_integration:-
-
cpe:2.3:h:polycom:soundstation_vtx_1000:-
-
cpe:2.3:h:polycom:trio_8500:-
-
cpe:2.3:h:polycom:trio_8800:-
-
cpe:2.3:h:polycom:vvx150:-
-
cpe:2.3:h:polycom:vvx201:-
-
cpe:2.3:h:polycom:vvx250:-
-
cpe:2.3:h:polycom:vvx300:-
-
cpe:2.3:h:polycom:vvx301:-
-
cpe:2.3:h:polycom:vvx310:-
-
cpe:2.3:h:polycom:vvx311:-
-
cpe:2.3:h:polycom:vvx350:-
-
cpe:2.3:h:polycom:vvx400:-
-
cpe:2.3:h:polycom:vvx401:-
-
cpe:2.3:h:polycom:vvx410:-
-
cpe:2.3:h:polycom:vvx411:-
-
cpe:2.3:h:polycom:vvx450:-
-
cpe:2.3:h:polycom:vvx500:-
-
cpe:2.3:h:polycom:vvx501:-
-
cpe:2.3:h:polycom:vvx600:-
-
cpe:2.3:h:polycom:vvx601:-
-
cpe:2.3:o:polycom:unified_communications_software:4.0.1
-
cpe:2.3:o:polycom:unified_communications_software:4.0.10
-
cpe:2.3:o:polycom:unified_communications_software:4.0.11
-
cpe:2.3:o:polycom:unified_communications_software:4.0.12
-
cpe:2.3:o:polycom:unified_communications_software:4.0.13
-
cpe:2.3:o:polycom:unified_communications_software:4.0.14.1580
-
cpe:2.3:o:polycom:unified_communications_software:4.0.2
-
cpe:2.3:o:polycom:unified_communications_software:4.0.5
-
cpe:2.3:o:polycom:unified_communications_software:4.0.6
-
cpe:2.3:o:polycom:unified_communications_software:4.0.7
-
cpe:2.3:o:polycom:unified_communications_software:4.0.8
-
cpe:2.3:o:polycom:unified_communications_software:4.0.9
-
cpe:2.3:o:polycom:unified_communications_software:4.1.6
-
cpe:2.3:o:polycom:unified_communications_software:4.1.7
-
cpe:2.3:o:polycom:unified_communications_software:4.1.8
-
cpe:2.3:o:polycom:unified_communications_software:5.0.1
-
cpe:2.3:o:polycom:unified_communications_software:5.0.2
-
cpe:2.3:o:polycom:unified_communications_software:5.1.1
-
cpe:2.3:o:polycom:unified_communications_software:5.1.2
-
cpe:2.3:o:polycom:unified_communications_software:5.1.3
-
cpe:2.3:o:polycom:unified_communications_software:5.2.0
-
cpe:2.3:o:polycom:unified_communications_software:5.2.3
-
cpe:2.3:o:polycom:unified_communications_software:5.2.4
-
cpe:2.3:o:polycom:unified_communications_software:5.2.5
-
cpe:2.3:o:polycom:unified_communications_software:5.3.0
-
cpe:2.3:o:polycom:unified_communications_software:5.3.1
-
cpe:2.3:o:polycom:unified_communications_software:5.3.2
-
cpe:2.3:o:polycom:unified_communications_software:5.3.3
-
cpe:2.3:o:polycom:unified_communications_software:5.4.0
-
cpe:2.3:o:polycom:unified_communications_software:5.4.0.10182
-
cpe:2.3:o:polycom:unified_communications_software:5.4.0.5841
-
cpe:2.3:o:polycom:unified_communications_software:5.4.1
-
cpe:2.3:o:polycom:unified_communications_software:5.4.2
-
cpe:2.3:o:polycom:unified_communications_software:5.4.3
-
cpe:2.3:o:polycom:unified_communications_software:5.4.4
-
cpe:2.3:o:polycom:unified_communications_software:5.4.5
-
cpe:2.3:o:polycom:unified_communications_software:5.4.6
-
cpe:2.3:o:polycom:unified_communications_software:5.4.7
-
cpe:2.3:o:polycom:unified_communications_software:5.5.0
-
cpe:2.3:o:polycom:unified_communications_software:5.5.1
-
cpe:2.3:o:polycom:unified_communications_software:5.5.2
-
cpe:2.3:o:polycom:unified_communications_software:5.5.3
-
cpe:2.3:o:polycom:unified_communications_software:5.5.4
-
cpe:2.3:o:polycom:unified_communications_software:5.6.0
-
cpe:2.3:o:polycom:unified_communications_software:5.6.1
-
cpe:2.3:o:polycom:unified_communications_software:5.6.2
-
cpe:2.3:o:polycom:unified_communications_software:5.6.2.1593
-
cpe:2.3:o:polycom:unified_communications_software:5.6.4.1088
-
cpe:2.3:o:polycom:unified_communications_software:5.7.0.14430
-
cpe:2.3:o:polycom:unified_communications_software:5.7.2.1765
-
cpe:2.3:o:polycom:unified_communications_software:5.7.3.1797
-
cpe:2.3:o:polycom:unified_communications_software:5.7.4.0922
-
cpe:2.3:o:polycom:unified_communications_software:5.8.0.12848
-
cpe:2.3:o:polycom:unified_communications_software:5.9.3
-
cpe:2.3:o:polycom:unified_communications_software:6.0.0
-
cpe:2.3:o:polycom:united_communications_software:*