Arbitrary Password Disclosure in Polycom RealPresence Debut

Arbitrary Password Disclosure in Polycom RealPresence Debut

CVE-2018-10946 · LOW Severity

AV:A/AC:L/AU:S/C:P/I:N/A:N

An issue was discovered in versions earlier than 1.3.0-66872 for Polycom RealPresence Debut that allows attackers to arbitrarily read the admin user's password via the admin web UI.

Learn more about our Web App Pen Testing.