Poly Lens Desktop Application – Privilege Escalation_CVE-2025-43491

7.3 / 10

HIGH

CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

A vulnerability in the Poly Lens Desktop application running on the Windows platform might allow modifications to the filesystem, which might lead to SYSTEM level privileges being granted.

Basic Information

ID CVE-2025-43491

Source hp

Published Sep 9, 2025 at 20:29

Affected Product

Vendor HP, Inc.

Product Poly Lens

Version See HP security bulletin reference for affected versions

Affected Versions HP, Inc. Poly Lens See HP security bulletin reference for affected versions

CWE Classification

CWE-99

References

support.hp.com /us-en/document/ish_12979589-12979615-16/hpsbpy04048

{
    "lastseen": "",
    "description": "A vulnerability in the Poly Lens Desktop application running on the Windows platform might allow modifications to the filesystem, which might lead to SYSTEM level privileges being granted.",
    "published": "2025-09-09T20:29:47.968Z",
    "modified": "2025-09-09T20:29:47.968Z",
    "type": "cve",
    "title": "Poly Lens Desktop Application \u2013 Privilege Escalation",
    "source": "hp",
    "references": "https://support.hp.com/us-en/document/ish_12979589-12979615-16/hpsbpy04048",
    "id": "CVE-2025-43491",
    "bulletinFamily": "",
    "cwe": [
        "CWE-99"
    ],
    "cvelist": null,
    "sourceData": "HP, Inc. Poly Lens See HP security bulletin reference for affected versions",
    "sourceHref": "",
    "cvss": {
        "score": 7.3,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Poly Lens",
    "version": "See HP security bulletin reference for affected versions",
    "vendor": "HP, Inc.",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}