Known Vulnerabilities for Unified Communications Software by Polycom
Listed below are 6 of the newest known vulnerabilities associated with "Unified Communications Software" by "Polycom".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2019-12948 | A vulnerability in the web-based management interface of VVX, Trio, SoundStructure, SoundPoint, and SoundStation phones runni... | 8.3 - HIGH | 2019-07-29 | 2019-08-06 |
| CVE-2019-10689 | VVX products using UCS software version 5.9.2 and earlier with Better Together over Ethernet Connector (BToE) application ver... | 6.5 - MEDIUM | 2019-06-24 | 2019-06-27 |
| CVE-2019-10688 | VVX products with software versions including and prior to, UCS 5.9.2 with Better Together over Ethernet Connector (BToE) app... | 6.8 - MEDIUM | 2019-04-23 | 2019-06-17 |
| CVE-2018-18568 | Polycom VVX 500 and 601 devices 5.8.0.12848 and earlier allows man-in-the-middle attackers to obtain sensitive credential inf... | 5.9 - MEDIUM | 2018-10-24 | 2021-06-15 |
| CVE-2018-18566 | The SIP service in Polycom VVX 500 and 601 devices 5.8.0.12848 and earlier allow remote attackers to obtain sensitive phone c... | 5.3 - MEDIUM | 2018-10-24 | 2021-06-15 |
| CVE-2017-12857 | Polycom SoundStation IP, VVX, and RealPresence Trio that are running software older than UCS 4.0.12, 5.4.5 rev AG, 5.4.7, 5.5... | 8.8 - HIGH | 2017-08-25 | 2017-09-13 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Polycom | Unified Communications Software | 5.8.0 |