CVE-2025-43489 | THREATINT

Description

A potential security vulnerability has been identified in the Poly Clariti Manager for versions prior to 10.12.1. The vulnerability could deserialize untrusted data without validation. HP has addressed the issue in the latest software update.

PUBLISHED Reserved 2025-04-16 | Published 2025-07-22 | Updated 2025-07-23 | Assigner hp

LOW: 2.0CVSS:4.0/AV:A/AC:L/AT:P/PR:H/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Problem types

CWE-502 Deserialization of Untrusted Data

Product status

Default status

unknown

See HP Security Bulletin reference for affected versions.

affected

References

support.hp.com/...ument/ish_12781425-12781447-16/hbsbpy04037

cve.org (CVE-2025-43489)

nvd.nist.gov (CVE-2025-43489)

Download JSON