Stored Cross-Site Scripting Vulnerability in Poly Clariti Manager by HP
CVE-2025-43486
Currently unrated
What is CVE-2025-43486?
The Poly Clariti Manager has been identified with a stored cross-site scripting vulnerability impacting versions before 10.12.1. This issue arises from the application's inability to properly sanitize user input before storing and displaying it. As a result, attackers can inject malicious scripts that may be executed in the context of the user’s session, posing potential security risks. HP has resolved this vulnerability in the latest software release, recommending users to update promptly to mitigate any associated threats.