Weak Password Vulnerability in Polycom RealPresence Resource Manager
CVE-2015-4681

7.8HIGH

Key Information:

Vendor

Polycom

Status
Realpresence Resource Manager
Vendor
CVE Published:
19 September 2017

What is CVE-2015-4681?

The Polycom RealPresence Resource Manager (RPRM) prior to version 8.4 is susceptible to security risks stemming from weak password configurations. Local users can exploit this vulnerability, resulting in an unspecified impact that may affect the integrity of communications managed by the system. Proper password management policies and security measures are crucial to mitigate such vulnerabilities and protect sensitive conference data.

References

https://packetstormsecurity.com/files/132463/Polycom-Real...
x_refsource_MISC
http://www.securityfocus.com/archive/1/535852/100/0/threaded
mailing-listx_refsource_BUGTRAQ
http://seclists.org/fulldisclosure/2015/Jun/81
mailing-listx_refsource_FULLDISC

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.