• ×
    Information
    Need Windows 11 help?
    Check documents on compatibility, FAQs, upgrade information and available fixes.
    Windows 11 Support Center.
  • post a message
  • ×
    Information
    Need Windows 11 help?
    Check documents on compatibility, FAQs, upgrade information and available fixes.
    Windows 11 Support Center.
  • post a message
Guidelines
We are proud to announce new Poly Studio Series video bars and remote room control with Poly Connect. Read more about the solutions!
Locked

‎10-31-2024 10:50 AM

HP Recommended
Product: Poly x72
Operating System: Other

Do anyone know whether we are able to filter out the ICMP timestamp requests , and the outgoing ICMP timestamp replies from the Poly x series codecs? On the x72 specifically I am seeing it return CVE-1999-0524 when I scan it for vulnerabilities.

Thanks!

3 REPLIES 3

‎11-01-2024 01:44 AM

HP Recommended

Hello @aschnur ,

 

Welcome to the HP community.

 

Unfortunately, your post does not contain the currently used Software version for the HP Poly product, the HP Poly Software, or the Partner application version you use. For example Microsoft Teams, Zoom Rooms, Poly SIP/H.323 mode etc.

 

This is important especially in the future when someone finds this post in days, months, or years to come.

 

Please do not simply edit the original post but reply with the versions.

 

In the FAQ or the Read 1st section, we remind users why this is important.

 

To your actual issue, CVE-1999-0524 ICMP Timestamp Request Remote Date Disclosure is classed only a 2.1 here: https://nvd.nist.gov/vuln/detail/CVE-1999-0524, so from my experience, this is not a critical issue.

 

You may configure the local firewall to prevent a system from responding to certain ICMP requests.

 

Best regards

 

Steffen Baier

------------------------------------------------
Notice: I am an HP Poly employee but all replies within the community are done as a volunteer outside of my day role. This community forum is not an official HP Poly support resource, thus responses from HP Poly employees, partners, and customers alike are best-effort in attempts to share learned knowledge.
If you need immediate and/or official assistance for former Poly\Plantronics\Polycom please open a service ticket through your support channels
For HP products please check HP Support.

Please also ensure you always check the General VoIP , Video Endpoint , UC Platform (Microsoft) , PSTN
Was this reply helpful? Yes No

‎11-19-2024 10:54 AM

HP Recommended

I am seeing this same CVE on the x52 and x72. Both devices are set up for Zoom, the x52 is on 4.3.3-428018, and the x72 is on 4.2.5-398123. Thoughts?

 
Was this reply helpful? Yes No

‎11-19-2024 11:08 AM

HP Recommended

Hello @aschnur 

 

only the same answer that I already provided.

 

Best regards

 

Steffen Baier

------------------------------------------------
Notice: I am an HP Poly employee but all replies within the community are done as a volunteer outside of my day role. This community forum is not an official HP Poly support resource, thus responses from HP Poly employees, partners, and customers alike are best-effort in attempts to share learned knowledge.
If you need immediate and/or official assistance for former Poly\Plantronics\Polycom please open a service ticket through your support channels
For HP products please check HP Support.

Please also ensure you always check the General VoIP , Video Endpoint , UC Platform (Microsoft) , PSTN
Was this reply helpful? Yes No
† The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the Terms of Use and Rules of Participation.
Didn't find what you were looking for? Ask the community
† The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the <a href="https://www8.hp.com/us/en/terms-of-use.html" class="udrlinesmall">Terms of Use</a> and <a href="/t5/custom/page/page-id/hp.rulespage" class="udrlinesmall"> Rules of Participation</a>.