Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Poly (formerly Polycom) HDX 3.1.13. A feature exists that allows the creation of a server / client certificate, or the upload of the user certificate, on the administrator's page. The value received from the user is the factor value of a shell script on the equipment. By entering a special character (such as a single quote) in a CN or other CSR field, one can insert a command into a factor value. A system command can be executed as root.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Polycom HDX 操作系统命令注入漏洞
Vulnerability Description
Polycom HDX是美国宝利通(Polycom)公司的一套高清视频会议系统。 Polycom HDX中存在安全漏洞。攻击者可利用该漏洞以root权限执行系统命令。
CVSS Information
N/A
Vulnerability Type
N/A