ByteOS Network

CVE Vulnerability Details :

CVE-2026-0754

PUBLISHED

More Info Official Page

Assigner-hp

Assigner Org ID-74586083-13ce-40fd-b46a-8e5d23cfbcb2

Published At-03 Mar, 2026 | 00:48

Updated At-03 Mar, 2026 | 14:38

▼CVE Numbering Authority (CNA)

SIP Service Providers – Possible Impersonation of Poly Voice Device

An embedded test key and certificate could be extracted from a Poly Voice device using specialized reverse engineering tools. This extracted certificate could be accepted by a SIP service provider if the service provider does not perform proper validation of the device certificate.

Affected Products

Vendor

HP Inc

Product

VVX

Default Status

unaffected

Versions

Affected

From 0 before <UCS 6.4.8 (custom)

Vendor

HP Inc

Product

Edge E

Default Status

unaffected

Versions

Affected

From 0 before <PVOS 8.5.0 (custom)

Vendor

HP Inc

Product

Trio 8300

Default Status

unaffected

Versions

Affected

From 0 before <UCS 8.1.7.c (custom)

Problem Types

Type	CWE ID	Description
CWE	CWE-321	CWE-321

Type: CWE

CWE ID: CWE-321

Description: CWE-321

Metrics

Version	Base score	Base severity	Vector
4.0	8.2	HIGH	CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:H/SI:H/SA:N

Version: 4.0

Base score: 8.2

Base severity: HIGH

Vector:

CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:H/SI:H/SA:N

References

Hyperlink	Resource
https://support.hp.com/us-en/document/ish_14269649-14269682-16/hpsbpy04081	N/A

Hyperlink: https://support.hp.com/us-en/document/ish_14269649-14269682-16/hpsbpy04081

Resource: N/A

▼Authorized Data Publishers (ADP)

CISA ADP Vulnrichment

Affected Products

Affected

Affected

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References