CVE-2022-26481

CVE-2022-26481

EPSS 1.6%

An issue was discovered in Poly Studio before 3.7.0. Command Injection can occur via the CN field of a Create Certificate Signing Request (CSR) action.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://sec-consult.com/vulnerability-lab/advisory/authenticated-command-injection-in-poly-studio/https://www.poly.com/us/en/support/security-center