Skip to main content

Realpresence Resource Manager

5 CVEs product

Monthly

CVE-2015-4685 HIGH POC This Week

Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allows local users with access to the plcm account to gain privileges via a script in /var/polycom/cma/upgrade/scripts, related to a sudo. Rated high severity (CVSS 7.0). Public exploit code available and no vendor patch available.

Privilege Escalation Realpresence Resource Manager
NVD Exploit-DB
CVSS 3.0
7.0
EPSS
0.2%
CVE-2015-4684 MEDIUM POC THREAT This Month

Multiple directory traversal vulnerabilities in Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allow (1) remote authenticated users to read arbitrary files via a .. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 11.4%.

Path Traversal Authentication Bypass Realpresence Resource Manager
NVD Exploit-DB
CVSS 3.0
6.5
EPSS
11.4%
CVE-2015-4683 CRITICAL POC THREAT Emergency

Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allows attackers to obtain sensitive information and potentially gain privileges by leveraging use of session identifiers as parameters. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 34.3%.

Privilege Escalation Realpresence Resource Manager
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
34.3%
Threat
4.5
CVE-2015-4682 MEDIUM POC THREAT This Month

Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allows remote authenticated users to obtain the installation path via an HTTP POST request to PlcmRmWeb/JConfigManager. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 12.3%.

Information Disclosure Realpresence Resource Manager
NVD Exploit-DB
CVSS 3.0
6.5
EPSS
12.3%
CVE-2015-4681 HIGH POC This Week

Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allows local users to have unspecified impact via vectors related to weak passwords. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Realpresence Resource Manager
NVD Exploit-DB
CVSS 3.0
7.8
EPSS
0.5%
EPSS 0% CVSS 7.0
HIGH POC This Week

Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allows local users with access to the plcm account to gain privileges via a script in /var/polycom/cma/upgrade/scripts, related to a sudo. Rated high severity (CVSS 7.0). Public exploit code available and no vendor patch available.

Privilege Escalation Realpresence Resource Manager
NVD Exploit-DB
EPSS 11% CVSS 6.5
MEDIUM POC THREAT This Month

Multiple directory traversal vulnerabilities in Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allow (1) remote authenticated users to read arbitrary files via a .. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 11.4%.

Path Traversal Authentication Bypass Realpresence Resource Manager
NVD Exploit-DB
EPSS 34% 4.5 CVSS 9.8
CRITICAL POC THREAT Emergency

Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allows attackers to obtain sensitive information and potentially gain privileges by leveraging use of session identifiers as parameters. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 34.3%.

Privilege Escalation Realpresence Resource Manager
NVD Exploit-DB
EPSS 12% CVSS 6.5
MEDIUM POC THREAT This Month

Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allows remote authenticated users to obtain the installation path via an HTTP POST request to PlcmRmWeb/JConfigManager. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 12.3%.

Information Disclosure Realpresence Resource Manager
NVD Exploit-DB
EPSS 1% CVSS 7.8
HIGH POC This Week

Polycom RealPresence Resource Manager (aka RPRM) before 8.4 allows local users to have unspecified impact via vectors related to weak passwords. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Realpresence Resource Manager
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy