Poly Video – Sensitive Data Might Be Written to Log...

8.1 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N

Description

In limited scenarios, sensitive data might be written to the log file if an admin uses Microsoft Teams Admin Center (TAC) to make device configuration changes. The affected log file is visible only to users with admin credentials. This is limited to Microsoft TAC and does not affect configuration changes made using the provisioning server or the device WebUI.

Basic Information

ID CVE-2025-14432

Source hp

Published Dec 16, 2025 at 15:15

Affected Product

Vendor HP Inc

Product Poly G7500

Affected Versions HP Inc Poly G7500 0
HP Inc Poly Studio G62 0
HP Inc Poly Studio X72 0
HP Inc Poly Studio X52 0
HP Inc Poly Studio X32 0
HP Inc Poly Studio X70 0
HP Inc Poly Studio X50 0
HP Inc Poly Studio X30 0
HP Inc Poly Studio E70 0
HP Inc Poly Studio E60 0
HP Inc Poly EagleEye Cube 0
HP Inc Polycom EagleEye IV 0
HP Inc Poly Studio A2 0
HP Inc Poly Studio USB 0
HP Inc TC8 0
HP Inc TC10 0

CWE Classification

CWE-532

References

support.hp.com /us-en/document/ish_13612310-13612332-16/hpsbpy04080

{
    "lastseen": "",
    "description": "In limited scenarios, sensitive data might be written to the log file if an admin uses Microsoft Teams Admin Center (TAC) to make device configuration changes. The affected log file is visible only to users with admin credentials. This is limited to Microsoft TAC and does not affect configuration changes made using the provisioning server or the device WebUI.",
    "published": "2025-12-16T15:15:04.611Z",
    "modified": "2025-12-16T15:15:04.611Z",
    "type": "cve",
    "title": "Poly Video - Sensitive Data Might Be Written to Log File",
    "source": "hp",
    "references": "https://support.hp.com/us-en/document/ish_13612310-13612332-16/hpsbpy04080",
    "id": "CVE-2025-14432",
    "bulletinFamily": "",
    "cwe": [
        "CWE-532"
    ],
    "cvelist": null,
    "sourceData": "HP Inc Poly G7500 0\nHP Inc Poly Studio G62 0\nHP Inc Poly Studio X72 0\nHP Inc Poly Studio X52 0\nHP Inc Poly Studio X32 0\nHP Inc Poly Studio X70 0\nHP Inc Poly Studio X50 0\nHP Inc Poly Studio X30 0\nHP Inc Poly Studio E70 0\nHP Inc Poly Studio E60 0\nHP Inc Poly EagleEye Cube 0\nHP Inc Polycom EagleEye IV 0\nHP Inc Poly Studio A2 0\nHP Inc Poly Studio USB 0\nHP Inc TC8 0\nHP Inc TC10 0",
    "sourceHref": "",
    "cvss": {
        "score": 8.1,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Poly G7500",
    "version": "0",
    "vendor": "HP Inc",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Poly Video – Sensitive Data Might Be Written to Log File_CVE-2025-14432