PT-2025-30520 · Synology · Synology Router Manager

Name of the Vulnerable Software and Affected Versions: Synology Router Manager SRM versions prior to 1.3.1-9346-11 Description: A cross-site scripting XSS issue exists in the VPN Setting functionality. This allows remote authenticated users with administrator privileges to inject arbitrary web...

PT-2025-30600 · Ni · Ni Labview

Name of the Vulnerable Software and Affected Versions: NI LabVIEW versions 2025 Q1 and prior Description: An out-of-bounds read issue exists due to improper bounds checking in lvre!UDecStrToNum. This can lead to information disclosure or arbitrary code execution. Exploitation requires a user to...

PT-2025-30527 · Samsung · Magicinfo 9 Server

Name of the Vulnerable Software and Affected Versions: MagicINFO 9 Server versions prior to 21.1080.0 Description: An unrestricted file upload issue with dangerous file types exists in Samsung Electronics MagicINFO 9 Server, potentially leading to code injection. Recommendations: Update MagicINFO...

PT-2025-30553 · Mailman 3 · Mailman 3

Name of the Vulnerable Software and Affected Versions: mailman3 versions prior to 3.3.10-2.1 Description: A reliance on untrusted inputs in a security decision within the logrotate configuration allows for potential escalation from mailman to root. Recommendations: Update mailman3 to version...

PT-2025-30542 · Samsung · Magicinfo 9 Server

Name of the Vulnerable Software and Affected Versions: MagicINFO 9 Server versions prior to 21.1080.0 Description: A use of hard-coded credentials issue exists in Samsung Electronics MagicINFO 9 Server, allowing authentication bypass. Recommendations: Update MagicINFO 9 Server to version 21.1080....

CVE-2025-43489 Poly Clariti Manager - Multiple Security Vulnerabilities

A potential security vulnerability has been identified in the Poly Clariti Manager for versions prior to 10.12.1. The vulnerability could deserialize untrusted data without validation. HP has addressed the issue in the latest software update...

CVE-2025-43489

CVE-2025-43489 affects Hewlett-Packard Poly Clariti Manager prior to 10.12.1. The issue is a deserialization of untrusted data without validation in Poly Clariti Manager. HP has addressed the issue in the latest software update (version 10.12.1 or later). Connected documents confirm the affected ...

CVE-2025-43488 Poly Clariti Manager - Multiple Security Vulnerabilities

A potential security vulnerability has been identified in the Poly Clariti Manager for versions prior to 10.12.2. The vulnerability could allow a bypass of the application's XSS filter by submitting untrusted characters. HP has addressed the issue in the latest software update...

CVE-2025-43488 Poly Clariti Manager - Multiple Security Vulnerabilities

A potential security vulnerability has been identified in the Poly Clariti Manager for versions prior to 10.12.2. The vulnerability could allow a bypass of the application's XSS filter by submitting untrusted characters. HP has addressed the issue in the latest software update...

CVE-2025-43488

CVE-2025-43488 affects Poly Clariti Manager versions before 10.12.2. The vulnerability could allow bypassing the XSS filter by submitting untrusted characters. HP addresses the issue in the latest software update; remediation is to upgrade to Poly Clariti Manager 10.12.2 or later. The available c...

CVE-2025-43487

The CVE-2025-43487 entry pertains to the HP Poly Clariti Manager prior to version 10.12.2. Root cause: an improper implementation of access controls that enables privilege escalation via a Sudo vulnerability. Impact: potential elevation of privileges within affected deployments. Remediation: upgr...

CVE-2025-43487 Poly Clariti Manager - Multiple Security Vulnerabilities

A potential privilege escalation through Sudo vulnerability has been identified in the Poly Clariti Manager for versions prior to 10.12.2. The firmware flaw does not properly implement access controls. HP has addressed the issue in the latest software update...

CVE-2025-43486

CVE-2025-43486 affects Poly Clariti Manager (HP). A stored cross-site scripting (XSS) vulnerability exists in versions prior to 10.12.1 where user input is stored and rendered without proper sanitization. Root cause: insufficient input sanitization on the website that stores user input. Impact: p...

CVE-2025-43486 Poly Clariti Manager - Multiple Security Vulnerabilities

A potential stored cross-site scripting vulnerability has been identified in the Poly Clariti Manager for versions prior to 10.12.1. The website allows user input to be stored and rendered without proper sanitization. HP has addressed the issue in the latest software update...

CVE-2025-43486 Poly Clariti Manager - Multiple Security Vulnerabilities

A potential stored cross-site scripting vulnerability has been identified in the Poly Clariti Manager for versions prior to 10.12.1. The website allows user input to be stored and rendered without proper sanitization. HP has addressed the issue in the latest software update...

CVE-2025-43485 Poly Clariti Manager - Multiple Security Vulnerabilities

A potential security vulnerability has been identified in the Poly Clariti Manager for versions prior to 10.12.2. The vulnerability could potentially allow a privileged user to retrieve credentials from the log files. HP has addressed the issue in the latest software update...

CVE-2025-43485 Poly Clariti Manager - Multiple Security Vulnerabilities

A potential security vulnerability has been identified in the Poly Clariti Manager for versions prior to 10.12.2. The vulnerability could potentially allow a privileged user to retrieve credentials from the log files. HP has addressed the issue in the latest software update...

CVE-2025-43485

CVE-2025-43485: In HP Poly Clariti Manager versions prior to 10.12.2 , a vulnerability could allow a privileged user to retrieve credentials from log files. HP has addressed the issue in the latest software update; remediation is to upgrade to 10.12.2 or later . Documented impact focuses on confi...

CVE-2025-43484 Poly Clariti Manager - Multiple Security Vulnerabilities

A potential reflected cross-site scripting vulnerability has been identified in the Poly Clariti Manager for versions prior to 10.12.1. The website does not validate or sanitize the user input before rendering it in the response. HP has addressed the issue in the latest software update...

CVE-2025-43484 Poly Clariti Manager - Multiple Security Vulnerabilities

A potential reflected cross-site scripting vulnerability has been identified in the Poly Clariti Manager for versions prior to 10.12.1. The website does not validate or sanitize the user input before rendering it in the response. HP has addressed the issue in the latest software update...