XSS in Hp Inc. Poly Ccx
CVE-2026-5922
The IP phone might use malicious input stored in configuration parameters and render it as content for the WebUI’s webpage.
Vulnerability class: XSS (Cross-Site Scripting)
Affected products
- Hp Inc. Poly Ccx — versions 0
- Hp Inc. Poly Edge E — versions 0
- Hp Inc. Poly Trio C60 — versions 0