CVE Details
Basic Information
| Title | Poly Clariti Manager – Multiple Security Vulnerabilities |
|---|---|
| Type | cve |
| Published | 2025-07-22T23:05:24.070Z |
| Modified | 2025-07-22T23:05:24.070Z |
Product Information
| Vendor | HP Inc. |
|---|---|
| Product | Poly Clariti Manager |
| Version | See HP Security Bulletin reference for affected versions. |
CVSS Information
| Base Score | 7.3 (HIGH) |
|---|---|
| Attack Vector | CVSS:4.0/AV:A/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L |
AI Analysis
| AI Description | A SQL injection vulnerability in Poly Clariti Manager (versions before 10.12.1) allows privileged users to execute SQL commands. HP has fixed this issue in a recent update. |
|---|---|
| AI Severity | High |
| AI Vendor | HP Inc. |
| AI Product | Poly Clariti Manager |
| AI Version | Prior to 10.12.1 |
Affected Products
- HP Inc. Poly Clariti Manager See HP Security Bulletin reference for affected versions.
Additional Information
| CWE List | CWE-89 |
|---|---|
| Source | hp |
Description
A potential SQL injection vulnerability has been identified in the Poly
Clariti Manager for versions prior to 10.12.1. The vulnerability could allow
a privileged user to execute SQL commands. HP has addressed the issue in
the latest software update.
Clariti Manager for versions prior to 10.12.1. The vulnerability could allow
a privileged user to execute SQL commands. HP has addressed the issue in
the latest software update.