EDB-37449
webappshardware
Polycom RealPresence Resource Manager < 8.4 - Multiple Vulnerabilities
CVE-2015-4685CVE-2015-4684CVE-2015-4683+2 more
SEC Consult6/30/2015
CVE-2015-4683
9.8CRITICALPolycom RealPresence Resource Manager (aka RPRM) before 8.4 allows attackers to obtain sensitive information and potentially gain privileges by leveraging use of session identifiers as parameters with
Published: 9/19/2017Updated: 4/20/2025
Description
Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allows attackers to obtain sensitive information and potentially gain privileges by leveraging use of session identifiers as parameters with HTTP GET requests.
AI AnalysisPowered by AI
Affected Products
polycomrealpresence_resource_manager
Available Exploits (1)
References
- http://packetstormsecurity.com/files/132463/Polycom-RealPresence-Resource-Manager-RPRM-Disclosure-Traversal.htmlExploitThird Party AdvisoryVDB Entry
- http://seclists.org/fulldisclosure/2015/Jun/81ExploitMailing ListThird Party AdvisoryVDB Entry
- http://www.securityfocus.com/archive/1/535852/100/0/threaded
- http://www.securityfocus.com/bid/75432Third Party AdvisoryVDB Entry
- https://support.polycom.com/global/documents/support/documentation/Security_Center_Post_for_RPRM_CVEs.pdfVendor Advisory
- https://www.exploit-db.com/exploits/37449/ExploitThird Party AdvisoryVDB Entry
- http://packetstormsecurity.com/files/132463/Polycom-RealPresence-Resource-Manager-RPRM-Disclosure-Traversal.htmlExploitThird Party AdvisoryVDB Entry
- http://seclists.org/fulldisclosure/2015/Jun/81ExploitMailing ListThird Party AdvisoryVDB Entry
- http://www.securityfocus.com/archive/1/535852/100/0/threaded
- http://www.securityfocus.com/bid/75432Third Party AdvisoryVDB Entry
- https://support.polycom.com/global/documents/support/documentation/Security_Center_Post_for_RPRM_CVEs.pdfVendor Advisory
- https://www.exploit-db.com/exploits/37449/ExploitThird Party AdvisoryVDB Entry