Poly: >> Eagleeye Director Ii Firmware >> 1.1.0 Security Vulnerabilities
An issue was discovered in Poly EagleEye Director II before 2.2.2.1. Existence of a certain file (which can be created via an rsync backdoor) causes all API calls to execute as admin without authentication.
CVSS Score
9.8
EPSS Score
0.007
Published
2022-07-17
An issue was discovered in Poly EagleEye Director II before 2.2.2.1. os.system command injection can be achieved by an admin.
CVSS Score
7.2
EPSS Score
0.596
Published
2022-07-17