CVE-2025-43486

Published: Jul 22, 2025

Modified: Jul 23, 2025

PUBLISHED

Description

A potential stored cross-site scripting vulnerability has been identified in the Poly Clariti Manager for versions prior to 10.12.1. The website allows user input to be stored and rendered without proper sanitization. HP has addressed the issue in the latest software update.

Vendor	Product	Versions
HP Inc.	Poly Clariti Manager	affected `See HP Security Bulletin reference for affected versions.`

Weaknesses (CWE)

CWE-79

References

https://support.hp.com/us-en/document/ish_12781425-12781447-16/hbsbpy04037

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-43486

Description

Affected Products

Weaknesses (CWE)

References