XSS in Polycom Hdx_4002

CVE-2012-4970

Cross-site scripting (XSS) vulnerability in the web management interface on Polycom HDX Video End Points with UC APL software before 2.7.1.1_J, and commercial software before 3.0.5, allows remote attackers to inject arbitrary web script or…

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.011 (62.9th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References