Vulnerabilities > Polycom > UC APL > High

DATE CVE VULNERABILITY TITLE RISK
2020-01-28 CVE-2012-6610 OS Command Injection vulnerability in Polycom HDX Video END Points and UC APL
Polycom HDX Video End Points before 3.0.4 and UC APL before 2.7.1.J allows remote authenticated users to execute arbitrary commands as demonstrated by a ; (semicolon) to the ping command feature.
network
low complexity
polycom CWE-78
8.8
2020-01-28 CVE-2012-6609 Path Traversal vulnerability in Polycom HDX Video END Points and UC APL
Directory traversal vulnerability in a_getlog.cgi in Polycom HDX Video End Points before 3.0.4 and UC APL before 2.7.1.J allows remote attackers to read arbitrary files via a ..
network
low complexity
polycom CWE-22
7.5