Filtered by vendor Polycom
Subscriptions
Filtered by product Realpresence Resource Manager
Subscriptions
Total
5 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2015-4685 | 1 Polycom | 1 Realpresence Resource Manager | 2024-11-21 | N/A |
Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allows local users with access to the plcm account to gain privileges via a script in /var/polycom/cma/upgrade/scripts, related to a sudo misconfiguration. | ||||
CVE-2015-4684 | 1 Polycom | 1 Realpresence Resource Manager | 2024-11-21 | N/A |
Multiple directory traversal vulnerabilities in Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allow (1) remote authenticated users to read arbitrary files via a .. (dot dot) in the Modifier parameter to PlcmRmWeb/FileDownload; or remote authenticated administrators to upload arbitrary files via the (2) Filename or (3) SE_FNAME parameter to PlcmRmWeb/FileUpload or to read and remove arbitrary files via the (4) filePathName parameter in an importSipUriReservations SOAP request to PlcmRmWeb/JUserManager. | ||||
CVE-2015-4683 | 1 Polycom | 1 Realpresence Resource Manager | 2024-11-21 | N/A |
Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allows attackers to obtain sensitive information and potentially gain privileges by leveraging use of session identifiers as parameters with HTTP GET requests. | ||||
CVE-2015-4682 | 1 Polycom | 1 Realpresence Resource Manager | 2024-11-21 | N/A |
Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allows remote authenticated users to obtain the installation path via an HTTP POST request to PlcmRmWeb/JConfigManager. | ||||
CVE-2015-4681 | 1 Polycom | 1 Realpresence Resource Manager | 2024-11-21 | N/A |
Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allows local users to have unspecified impact via vectors related to weak passwords. |
Page 1 of 1.