CVE-2026-5923
6
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:P/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N
Summary
Malicious use of a stolen cookie might allow modifications to the contents of the IP phone’s webpage.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| HP Inc. | Poly CCX | 0 < 9.50 | affected |
| HP Inc. | Poly Edge E | 0 < 8.6.0 | affected |
| HP Inc. | Poly Trio C60 | 0 < 9.5.0 | affected |
Weaknesses
- CWE-352: CWE-352 Cross-Site request forgery (CSRF)
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.