Vulnerability Description
An issue was discovered in Polycom Web Management Interface G3/HDX 8000 HD with Durango 2.6.0 4740 software and embedded Polycom Linux Development Platform 2.14.g3. It has a blank administrative password by default, and can be successfully used without setting this password.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Polycom | Hdx System Software | <= 3.0.5 |
| Polycom | Hdx 4002 | - |
| Polycom | Hdx 4500 | - |
| Polycom | Hdx 6000 | - |
| Polycom | Hdx 7001 | - |
| Polycom | Hdx 7002 | - |
| Polycom | Hdx 8002 | - |
| Polycom | Hdx 8004 | - |
| Polycom | Hdx 8006 | - |
| Polycom | Hdx 9002 | - |
| Polycom | Hdx 9004 | - |
| Polycom | Hdx 9006 | - |
Related Weaknesses (CWE)
References
- https://web.archive.org/web/20130320033016/http://blog.tempest.com.br/joao-pauloExploitThird Party Advisory
- https://www.exploit-db.com/exploits/43032ExploitThird Party AdvisoryVDB Entry
- https://web.archive.org/web/20130320033016/http://blog.tempest.com.br/joao-pauloExploitThird Party Advisory
- https://www.exploit-db.com/exploits/43032ExploitThird Party AdvisoryVDB Entry
FAQ
What is CVE-2012-6611?
CVE-2012-6611 is a vulnerability with a CVSS score of 9.8 (CRITICAL). An issue was discovered in Polycom Web Management Interface G3/HDX 8000 HD with Durango 2.6.0 4740 software and embedded Polycom Linux Development Platform 2.14.g3. It has a blank administrative passw...
How severe is CVE-2012-6611?
CVE-2012-6611 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2012-6611?
Check the references section above for vendor advisories and patch information. Affected products include: Polycom Hdx System Software, Polycom Hdx 4002, Polycom Hdx 4500, Polycom Hdx 6000, Polycom Hdx 7001.