An issue exists in Poly EagleEye Director II prior to 2.2.2.1. Existence of a certain file (which can be created via an rsync backdoor) causes all API calls to execute as admin without authentication.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
poly eagleeye_director_ii_firmware |