Arbitrary Command Execution Vulnerability in Polycom HDX Video End Points and UC APL

Arbitrary Command Execution Vulnerability in Polycom HDX Video End Points and UC APL

CVE-2012-6610 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Polycom HDX Video End Points before 3.0.4 and UC APL before 2.7.1.J allows remote authenticated users to execute arbitrary commands as demonstrated by a ; (semicolon) to the ping command feature.

Learn more about our User Device Pen Test.