CVE-2024-3281

Name of the Vulnerable Software and Affected Versions Poly CCX devices versions 8.0.2.3267 through 8.1.3.1301

Description The issue is related to a flaw in the firmware build process that did not properly restrict access to a resource from an unauthorized actor. This flaw is associated with deficiencies in the authorization procedure, which could allow an attacker to elevate their privileges.

Recommendations For versions 8.0.2.3267 through 8.1.3.1301, update to a version after 8.1.3.1301 to resolve the issue. At the moment, there is no information about other specific mitigation measures for this vulnerability.