CVE-2019-12948

A vulnerability in the web-based management interface of VVX, Trio, SoundStructure, SoundPoint, and SoundStation phones running Polycom UC…

mitre·CWE-749·Published 2019-07-29

CVSS

—

EPSS

0.02

KEV

Exploits

cve.orgen

302 chars

A vulnerability in the web-based management interface of VVX, Trio, SoundStructure, SoundPoint, and SoundStation phones running Polycom UC Software, if exploited, could allow an authenticated, remote attacker with admin privileges to cause a denial of service (DoS) condition or execute arbitrary code.

NVDen

302 chars

NVDes

352 chars

Una vulnerabilidad en la interfaz de administración basada en web de los teléfonos VVX, Trio, SoundStructure, SoundPoint y SoundStation que ejecutan el software Polycom UC, si se explota, podría permitir que un atacante remoto autenticado con privilegios de administrador cause una condición de denegación de servicio (DoS) o ejecutar código arbitrario

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	6.5	8.0	6.4	AV:N/AC:L/Au:S/C:P/I:P/A:P
3.0	Primary	NVD	8.3	2.8	5.5	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L