File System Modification Vulnerability in Poly Lens by HP
CVE-2025-43491

7.3HIGH

Key Information:

Vendor: HP, Inc.
Status: Poly Lens
Vendor: CVE Published:; 9 September 2025

What is CVE-2025-43491?

A vulnerability exists in the Poly Lens Desktop application that runs on Windows, allowing potential unauthorized modifications to the filesystem. This flaw could enable attackers to gain escalated permissions, potentially granting them SYSTEM level access. Users of the application should take precautions and ensure they are utilizing the latest updates to mitigate risk.

Affected Version(s)

Poly Lens See HP security bulletin reference for affected versions

References

https://support.hp.com/us-en/document/ish_12979589-129796...

CVSS V4

Score:

7.3

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 9, 2025
Vulnerability Reserved
Apr 16, 2025

HP, Inc.

What is CVE-2025-43491?

Affected Version(s)

References

CVSS V4

Timeline