Severity by source
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Network-facing SIP but AC:H because it requires the device to connect to a malicious/MITM SIP server; no auth (PR:N), and impact is availability-only (A:H, C/I:N).
Primary rating from Vendor (hp).
CVSS VectorVendor: hp
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Lifecycle Timeline
2DescriptionCVE.org
The following Poly Voice IP devices, CCX, Trio, and Edge E, might be inoperable if they connect to a malicious SIP server and receive malformed data. HP is releasing updates to mitigate these potential vulnerabilities.
AnalysisAI
Denial of service in HP Poly Voice IP endpoints (CCX, Trio C60, and Edge E series) allows an attacker operating or impersonating a SIP server to render affected devices inoperable by returning malformed data during SIP signaling. The flaw is an uncontrolled-resource-consumption / improper-input-handling issue (CWE-400) that crashes or hangs the phone, disrupting voice service. …
Unlock full vulnerability intelligence
- Risk assessment & exploitation conditions
- Attack chain visualization
- Remediation with exact patch versions
- Threat intelligence from 22 sources
- Personal watchlist & email alerts
Free forever · No credit card required
Attack ChainAIDerived
Hypothetical attack flow derived from CVE metadata
Vulnerability AssessmentAI
| Exploitation | Exploitation requires the affected Poly device (CCX, Trio C60, or Edge E) to connect to a malicious or attacker-controlled SIP server and receive malformed data - reflected in the CVSS AT:P (attack requirement) metric. … Additional conditions and limiting factors are described in the full assessment. |
| Risk Assessment | The vendor CVSS 4.0 score is 8.2 (High) with vector AV:N/AC:L/AT:P/PR:N/UI:N and impact isolated to availability (VA:H; VC/VI = N), which is internally consistent: this is a pure denial-of-service with no confidentiality or integrity impact. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in. |
| Exploit Scenario | An attacker who controls or has compromised a SIP server, or who achieves a man-in-the-middle position on the signaling path, sends malformed SIP data to a Poly CCX, Trio C60, or Edge E endpoint during normal registration or call handling. The malformed response triggers resource exhaustion in the device's SIP stack, causing it to hang or crash and become inoperable, disrupting voice communications until it is recovered. … |
| Remediation | Apply the firmware updates HP is releasing for the CCX, Trio C60, and Edge E devices as described in advisory hpsbpy04096 (https://support.hp.com/us-en/document/ish_15222895-15222917-16/hpsbpy04096); patch availability is confirmed per the vendor advisory though a specific fixed version string is not given in the provided data, so obtain the exact build from HP. … Detailed patch versions, workarounds, and compensating controls in full report. |
Recommended ActionAI
Within 24 hours: Inventory affected HP Poly models (CCX, Trio C60, Edge E series) and verify exposure; subscribe to HP advisory hpsbpy04096 for patch notifications. …
Sign in for detailed remediation steps and compensating controls.
Threat intelligence, references, and detailed analysis are available after sign-in.
Same weakness CWE-400 – Uncontrolled Resource Consumption
View allSame technique Denial Of Service
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-41005
GHSA-gvgx-6fx4-x6g9