Polycom VVX jquery vulnerability on network securi...

JPeck · ‎06-04-2020

I have several Polycom VVX 300 and 310 phones installed at my customer's site. They recently did a network security scan and the phones are being flagged with a JQuery vulnerability. I have looked into the phones settings and researched the internet but I cannot seem to find a way to disable this so it no longer shows up on the scan.

The phones are firmware 5.8.0.12848. They are connecting to ReInvent Cloud service.

I have attached a screen shot of the scan message they are getting about the phones.

Any help on this is appreciated.

Thanks

SteffenBaierUK · ‎06-04-2020

Hello @JPeck ,

Welcome to the Poly Community.

UC Software 5.8.0 is no longer supported. Please upgrade to UC Software 5.9.6 and re-test.

Please ensure to provide some feedback if this reply has helped you so other users can profit from your experience.

Best Regards

Steffen Baier

----------------
The title Polycom Employee & Community Manager is a community setting and does not reflect my role. I am just a simple volunteer in the community like everybody else. My official "day" Job is 3rd Level support at Poly but I am unable to provide official support via the community.

----------------

Notice: This community forum is not an official Poly support resource, thus responses from Poly employees, partners, and customers alike are best-effort in attempts to share learned knowledge. If you need immediate and/or official assistance please open a service ticket through your proper support channels.
Please also ensure you always check the VoIP , Video Endpoint , Skype for Business , PSTN or RPM FAQ's

Polycom VVX jquery vulnerability on network security scan

Polycom VVX jquery vulnerability on network security scan

Re: Polycom VVX jquery vulnerability on network security scan