Vulnerabilities > Polycom > HDX 9006 > Medium

DATE CVE VULNERABILITY TITLE RISK
2013-01-01 CVE-2012-4970 Cross-Site Scripting vulnerability in Polycom HDX System Software
Cross-site scripting (XSS) vulnerability in the web management interface on Polycom HDX Video End Points with UC APL software before 2.7.1.1_J, and commercial software before 3.0.5, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
network
polycom CWE-79
4.3