Polycom: >> Vvx 500 Firmware Security Vulnerabilities
The SIP service in Polycom VVX 500 and 601 devices 5.8.0.12848 and earlier allow remote attackers to obtain sensitive phone configuration information by leveraging use with an on-premise installation with Skype for Business.
CVSS Score
5.3
EPSS Score
0.005
Published
2018-10-24
Polycom VVX 500 and 601 devices 5.8.0.12848 and earlier allows man-in-the-middle attackers to obtain sensitive credential information by leveraging failure to validate X.509 certificates when used with an on-premise installation with Skype for Business.
CVSS Score
5.9
EPSS Score
0.001
Published
2018-10-24