Vulnerabilities > Polycom > Trio 8500 Firmware > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-11-15 | CVE-2018-14935 | Cross-site Scripting vulnerability in Polycom Trio 8500 Firmware 5.5.2/5.5.3 The Web administration console on Polycom Trio devices with software before 5.5.4 has XSS. | 6.1 |
| 2018-11-15 | CVE-2018-14934 | Incorrect Permission Assignment for Critical Resource vulnerability in Polycom Trio 8500 Firmware 5.5.2/5.5.3 The Bluetooth subsystem on Polycom Trio devices with software before 5.5.4 has Incorrect Access Control. | 6.5 |