RSS   Vulnerabilities for
'Unified communications software'
   RSS

2019-06-24
 
CVE-2019-10689

 

 
VVX products using UCS software version 5.9.2 and earlier with Better Together over Ethernet Connector (BToE) application version 3.9.1 and earlier provides insufficient authentication between the BToE application and the BToE component, resulting in leakage of sensitive information.

 
2019-04-23
 
CVE-2019-10688

CWE-798
 

 
VVX products with software versions including and prior to, UCS 5.9.2 with Better Together over Ethernet Connector (BToE) application 3.9.1, use hard-coded credentials to establish connections between the host application and the device.

 
2017-08-25
 
CVE-2017-12857

 

 
Polycom SoundStation IP, VVX, and RealPresence Trio that are running software older than UCS 4.0.12, 5.4.5 rev AG, 5.4.7, 5.5.2, or 5.6.0 are affected by a vulnerability in their UCS web application. This vulnerability could allow an authenticated remote attacker to read a segment of the phone's memory which could contain an administrator's password or other sensitive information.

 

 >>> Vendor: Polycom 29 Products
Viewstation 128
Viewstation 512
Viewstation dcp
Viewstation fx vs4000
Viewstation h.323
Viewstation mp
Viewstation sp 384
Viewstation v.35
Viavideo
Mgc-100
Mgc-25
Mgc-50
Soundpoint ip 301
Soundpoint ip 650
Soundpoint ip 601
Hdx system software
Realpresence cloudaxis suite
Btoe connector
Unified communications software
Realpresence resource manager
Qdx 6000 firmware
Uc software
Vvx 500 firmware
Vvx 601 firmware
Better together over ethernet connector
Group series
HDX
PANO
Obihai obi1022 firmware


Copyright 2024, cxsecurity.com

 

Back to Top