Poly: Security Vulnerabilities
An issue was discovered in Poly EagleEye Director II before 2.2.2.1. os.system command injection can be achieved by an admin.
CVSS Score
7.2
EPSS Score
0.261
Published
2022-07-17
A remote code execution issue in the ping command on Poly Trio 8800 5.7.1.4145 devices allows remote authenticated users to execute commands via unspecified vectors.
CVSS Score
8.8
EPSS Score
0.096
Published
2021-12-28
A command-injection vulnerability in an authenticated Telnet connection in Poly (formerly Polycom) CX5500 and CX5100 1.3.5 leads an attacker to Privilege Escalation and Remote Code Execution capability. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
CVSS Score
7.2
EPSS Score
0.031
Published
2021-09-07
Page 2