CVE-2012-6611

CRITICAL

Polycom HDX System Software < 3.0.5 - Use of Hard-coded Credentials

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-6611. PoCs published by Metasploit.

AI-analyzed exploit summary This Metasploit module exploits an authentication bypass vulnerability in Polycom HDX video endpoints (versions 3.0.5 and earlier) by flooding the service with simultaneous connections. It then leverages an OS command injection in the ping command to execute arbitrary commands as root via a reverse shell.

Description

An issue was discovered in Polycom Web Management Interface G3/HDX 8000 HD with Durango 2.6.0 4740 software and embedded Polycom Linux Development Platform 2.14.g3. It has a blank administrative password by default, and can be successfully used without setting this password.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremoteunix
https://www.exploit-db.com/exploits/43032

This Metasploit module exploits an authentication bypass vulnerability in Polycom HDX video endpoints (versions 3.0.5 and earlier) by flooding the service with simultaneous connections. It then leverages an OS command injection in the ping command to execute arbitrary commands as root via a reverse shell.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Polycom HDX video endpoints (versions 3.0.5 and earlier)
No auth needed
Prerequisites: Network access to the target device on port 23 (telnet) · Target running vulnerable Polycom HDX firmware
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
https://www.exploit-db.com/exploits/43032

Scores

CVSS v3 9.8
EPSS 0.0101
EPSS Percentile 77.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-798
Status published
Products (1)
polycom/hdx_system_software < 3.0.5
Published Feb 10, 2020
Tracked Since Feb 18, 2026