CVE-2025-43484
Severity CVSS v4.0:
MEDIUM
Type:
CWE-79
Cross-Site Scripting (XSS)
Publication date:
23/07/2025
Last modified:
25/07/2025
Description
A potential reflected cross-site scripting vulnerability has been<br />
identified in the Poly Clariti Manager for versions prior to 10.12.1. The<br />
website does not validate or sanitize the user input before rendering it in the<br />
response. HP has addressed the issue in the latest software update.
Impact
Base Score 4.0
6.00
Severity 4.0
MEDIUM