Skip to main content

Poly CCX CVE-2026-2891

| EUVDEUVD-2026-41005 HIGH
Uncontrolled Resource Consumption (CWE-400)
2026-07-01 hp GHSA-gvgx-6fx4-x6g9
8.2
CVSS 4.0 · Vendor: hp
Share

Severity by source

Vendor (hp) PRIMARY
8.2 HIGH
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
vuln.today AI
5.9 MEDIUM

Network-facing SIP but AC:H because it requires the device to connect to a malicious/MITM SIP server; no auth (PR:N), and impact is availability-only (A:H, C/I:N).

3.1 AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
4.0 AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Primary rating from Vendor (hp).

CVSS VectorVendor: hp

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
X

Lifecycle Timeline

2
Patch available
Jul 01, 2026 - 16:01 EUVD
Analysis Generated
Jul 01, 2026 - 14:52 vuln.today

DescriptionCVE.org

The following Poly Voice IP devices, CCX, Trio, and Edge E, might be inoperable if they connect to a malicious SIP server and receive malformed data. HP is releasing updates to mitigate these potential vulnerabilities.

AnalysisAI

Denial of service in HP Poly Voice IP endpoints (CCX, Trio C60, and Edge E series) allows an attacker operating or impersonating a SIP server to render affected devices inoperable by returning malformed data during SIP signaling. The flaw is an uncontrolled-resource-consumption / improper-input-handling issue (CWE-400) that crashes or hangs the phone, disrupting voice service. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Position as/compromise SIP server
Delivery
Device connects during SIP registration
Exploit
Return malformed SIP data
Execution
Trigger resource exhaustion in SIP stack
Impact
Device crashes and becomes inoperable

Vulnerability AssessmentAI

Exploitation Exploitation requires the affected Poly device (CCX, Trio C60, or Edge E) to connect to a malicious or attacker-controlled SIP server and receive malformed data - reflected in the CVSS AT:P (attack requirement) metric. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The vendor CVSS 4.0 score is 8.2 (High) with vector AV:N/AC:L/AT:P/PR:N/UI:N and impact isolated to availability (VA:H; VC/VI = N), which is internally consistent: this is a pure denial-of-service with no confidentiality or integrity impact. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker who controls or has compromised a SIP server, or who achieves a man-in-the-middle position on the signaling path, sends malformed SIP data to a Poly CCX, Trio C60, or Edge E endpoint during normal registration or call handling. The malformed response triggers resource exhaustion in the device's SIP stack, causing it to hang or crash and become inoperable, disrupting voice communications until it is recovered. …
Remediation Apply the firmware updates HP is releasing for the CCX, Trio C60, and Edge E devices as described in advisory hpsbpy04096 (https://support.hp.com/us-en/document/ish_15222895-15222917-16/hpsbpy04096); patch availability is confirmed per the vendor advisory though a specific fixed version string is not given in the provided data, so obtain the exact build from HP. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Inventory affected HP Poly models (CCX, Trio C60, Edge E series) and verify exposure; subscribe to HP advisory hpsbpy04096 for patch notifications. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-2891 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy