料金エンタープライズ

CVE-2015-4683

9.8CRITICAL

Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allows attackers to obtain sensitive information and potentially gain privileges by leveraging use of session identifiers as parameters with

公開日: 9/19/2017更新日: 4/20/2025

NVDで表示 MITREで表示

説明

Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allows attackers to obtain sensitive information and potentially gain privileges by leveraging use of session identifiers as parameters with HTTP GET requests.

AI分析AIによる分析

影響を受ける製品

polycomrealpresence_resource_manager

利用可能なエクスプロイト (1)

webappshardware

Polycom RealPresence Resource Manager < 8.4 - Multiple Vulnerabilities

CVE-2015-4685CVE-2015-4684CVE-2015-4683+2 more

SEC Consult6/30/2015

参照

http://packetstormsecurity.com/files/132463/Polycom-RealPresence-Resource-Manager-RPRM-Disclosure-Traversal.html
ExploitThird Party AdvisoryVDB Entry
http://seclists.org/fulldisclosure/2015/Jun/81
ExploitMailing ListThird Party AdvisoryVDB Entry
http://www.securityfocus.com/archive/1/535852/100/0/threaded
http://www.securityfocus.com/bid/75432
Third Party AdvisoryVDB Entry
https://support.polycom.com/global/documents/support/documentation/Security_Center_Post_for_RPRM_CVEs.pdf
Vendor Advisory
https://www.exploit-db.com/exploits/37449/
ExploitThird Party AdvisoryVDB Entry
http://packetstormsecurity.com/files/132463/Polycom-RealPresence-Resource-Manager-RPRM-Disclosure-Traversal.html
ExploitThird Party AdvisoryVDB Entry
http://seclists.org/fulldisclosure/2015/Jun/81
ExploitMailing ListThird Party AdvisoryVDB Entry
http://www.securityfocus.com/archive/1/535852/100/0/threaded
http://www.securityfocus.com/bid/75432
Third Party AdvisoryVDB Entry
https://support.polycom.com/global/documents/support/documentation/Security_Center_Post_for_RPRM_CVEs.pdf
Vendor Advisory
https://www.exploit-db.com/exploits/37449/
ExploitThird Party AdvisoryVDB Entry