A command-injection vulnerability in an authenticated Telnet connection in Poly (formerly Polycom) CX5500 and CX5100 1.3.5 leads an attacker to Privilege Escalation and Remote Code Execution capability. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
References
Link | Resource |
---|---|
https://support.polycom.com/content/dam/polycom-support/global/documentation/security-bulletin-cx5100-cx5500-authenticated-v1-0.pdf | Vendor Advisory |
https://support.polycom.com/content/support.html | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-09-07T22:22:41
Updated: 2024-06-26T20:50:40.938Z
Reserved: 2021-07-21T00:00:00
Link: CVE-2021-37145
JSON object: View
NVD Information
Status : Modified
Published: 2021-09-07T23:15:07.000
Modified: 2024-06-26T21:15:12.107
Link: CVE-2021-37145
JSON object: View
Redhat Information
No data.
CWE