Lucene search
HpCVE-2024-41912HistoryAug 07, 2024 - 8:15 p.m.
CVE-2024-41912
2024-08-0720:15:50
hp
web.nvd.nist.gov
15
vulnerability
poly clariti manager
firmware flaw
access controls
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
6.5
Confidence
Low
EPSS
0.001
Percentile
39.7%
A vulnerability was discovered in the firmware builds up to 10.10.2.2 in Poly Clariti Manager devices. The firmware flaw does not properly implement access controls.
Affected configurations
Node
hppoly_clariti_manager_firmwareRange<10.10.2.2_100
hppoly_clariti_manager
| Vendor | Product | Version | CPE |
|---|---|---|---|
| hp | poly_clariti_manager_firmware | * | cpe:2.3:o:hp:poly_clariti_manager_firmware:*:*:*:*:*:*:*:* |
| hp | poly_clariti_manager | * | cpe:2.3:h:hp:poly_clariti_manager:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "HP Inc.",
"product": "Poly Clariti Manager",
"versions": [
{
"version": "See HP Security Bulletin reference for affected versions.",
"status": "affected"
}
]
}
]Related
cvelist
cvelist
CVE-2024-41912
2024-08-07 19:54:47
vulnrichment
vulnrichment
CVE-2024-41912
2024-08-07 19:54:47
nvd
nvd
CVE-2024-41912
2024-08-07 20:15:50
hp
hp
Clariti Manager – Privilege Escalation Through Sudo
2024-08-05 00:00:00
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
6.5
Confidence
Low
EPSS
0.001
Percentile
39.7%
Related for CVE-2024-41912