CVEs (5)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Polycom 1Realpresence Resource Manager May 13, 2026 Sep 19, 2017 N/A· v4 7.0 HIGH· v3 4.4 MEDIUM· v2 Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allows local users with access to the plcm account to gain privileges via a script in /var/polycom/cma/upgrade/scripts, related to a sudo misconfiguration. |
1Polycom 1Realpresence Resource Manager May 13, 2026 Sep 19, 2017 N/A· v4 6.5 MEDIUM· v3 5.5 MEDIUM· v2 Multiple directory traversal vulnerabilities in Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allow (1) remote authenticated users to read arbitrary files via a .. (dot dot) in the Modifier parameter to Plc...Show more |
1Polycom 1Realpresence Resource Manager May 13, 2026 Sep 19, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allows attackers to obtain sensitive information and potentially gain privileges by leveraging use of session identifiers as parameters with HTTP GET requests. |
1Polycom 1Realpresence Resource Manager May 13, 2026 Sep 19, 2017 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allows remote authenticated users to obtain the installation path via an HTTP POST request to PlcmRmWeb/JConfigManager. |
1Polycom 1Realpresence Resource Manager May 13, 2026 Sep 19, 2017 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allows local users to have unspecified impact via vectors related to weak passwords. |