🔐 CVE Alert

CVE-2026-5922

UNKNOWN 0.0

Poly Voice – Potential Unauthorized Modification of WebUI using XSS Attack

CVSS Score
0.0
EPSS Score
0.2%
EPSS Percentile
14th

The IP phone might use malicious input stored in configuration parameters and render it as content for the WebUI’s webpage.

CWE CWE-79
Vendor hp inc.
Product poly ccx
Published Jul 8, 2026
Last Updated Jul 9, 2026
Stay Ahead of the Next One

Get instant alerts for hp inc. poly ccx

Be the first to know when new unknown vulnerabilities affecting hp inc. poly ccx are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

HP Inc. / Poly CCX
0 < 9.5.0
HP Inc. / Poly Edge E
0 < 8.6.0
HP Inc. / Poly Trio C60
0 < 9.5.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗
support.hp.com: https://support.hp.com/us-en/document/ish_15255534-15255565-16/hpsbpy04108