CVE-2025-43020

Medium CVSS 5.7

Overview

A potential command
injection vulnerability has been identified in the Poly Clariti Manager for
versions prior to 10.12.2. The vulnerability could allow a privileged user
to submit arbitrary input. HP has addressed the issue in the latest software update.

CWE: CWE-78 Published: 2025-07-22T23:15:23.653

Risk analysis

This vulnerability is rated 🟡 MEDIUM.

CVSS: 5.7 (MEDIUM)
Detected tags: command_injection (tag impact: LOW)

Recommended actions:

Prioritize remediation based on business criticality and exposure.
Limit exposure and increase monitoring until fixed.

Overview

Recommended tools

Tags