PT-2026-56624 · Hewlett Packard · Poly Ccx+2

Published

2026-07-08

·

Updated

2026-07-08

·

CVE-2026-5922

CVSS v4.0

5.9

Medium

VectorAV:N/AC:L/AT:P/PR:L/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
The IP phone might use malicious input stored in configuration parameters and render it as content for the WebUI’s webpage.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-5922

Affected Products

Poly Ccx
Poly Edge E
Poly Trio C60