Firmware Vulnerability in Poly Clariti Manager Devices
CVE-2024-41913

8.8HIGH

Key Information:

Vendor: HP
Status: Poly Clariti Manager
Vendor: CVE Published:; 6 August 2024

Summary

A flaw has been identified in the firmware of Poly Clariti Manager, specifically affecting builds up to version 10.10.2.2. This vulnerability arises due to inadequate sanitization of user input, potentially allowing attackers to exploit this weakness. Successful exploitation may lead to unauthorized actions, affecting the overall security posture of systems utilizing this firmware. Organizations using Poly Clariti Manager should assess their systems and take appropriate measures to mitigate any risks associated with this vulnerability.

Affected Version(s)

Poly Clariti Manager See HP Security Bulletin reference for affected versions.

References

https://support.hp.com/us-en/document/ish_11006488-110065...

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 6, 2024
Vulnerability Reserved
Jul 23, 2024