Lucene search
HpCVE-2024-41911HistoryAug 06, 2024 - 2:16 p.m.
CVE-2024-41911
2024-08-0614:16:04
CWE-79
hp
web.nvd.nist.gov
13
vulnerability
firmware
poly clariti manager
input neutralization
web page
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
AI Score
7.1
Confidence
Low
EPSS
0
Percentile
10.9%
A vulnerability was discovered in the firmware builds up to 10.10.2.2 in Poly Clariti Manager devices. The flaw does not properly neutralize input during a web page generation.
Affected configurations
Node
hppoly_clariti_manager_firmwareRange≤10.10.2.2
hppoly_clariti_managerMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| hp | poly_clariti_manager_firmware | * | cpe:2.3:o:hp:poly_clariti_manager_firmware:*:*:*:*:*:*:*:* |
| hp | poly_clariti_manager | - | cpe:2.3:h:hp:poly_clariti_manager:-:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "HP Inc.",
"product": "Poly Clariti Manager",
"versions": [
{
"version": "See HP Security Bulletin reference for affected versions.",
"status": "affected"
}
]
}
]Related
hp
hp
Clariti Manager - Multiple Stored XSS
2024-08-05 00:00:00
nvd
nvd
CVE-2024-41911
2024-08-06 14:16:04
cvelist
cvelist
CVE-2024-41911
2024-08-06 14:07:33
vulnrichment
vulnrichment
CVE-2024-41911
2024-08-06 14:07:33
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
AI Score
7.1
Confidence
Low
EPSS
0
Percentile
10.9%
Related for CVE-2024-41911