CVE-2024-41910

A vulnerability was discovered in the firmware builds up to 10.10.2.2 in Poly Clariti Manager devices. The firmware contained multiple XSS vulnerabilities in the version of JavaScript used.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:hp:poly_clariti_manager_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:poly_clariti_manager:-:*:*:*:*:*:*:*

History

13 Aug 2024, 13:06

Type Values Removed Values Added
First Time Hp poly Clariti Manager
Hp poly Clariti Manager Firmware
Hp
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 6.1
CPE cpe:2.3:h:hp:poly_clariti_manager:-:*:*:*:*:*:*:*
cpe:2.3:o:hp:poly_clariti_manager_firmware:*:*:*:*:*:*:*:*
References () https://support.hp.com/us-en/document/ish_11006981-11007005-16/hpsbpy03960 - () https://support.hp.com/us-en/document/ish_11006981-11007005-16/hpsbpy03960 - Vendor Advisory
CWE CWE-79

08 Aug 2024, 18:15

Type Values Removed Values Added
Summary
  • (es) Se descubrió una vulnerabilidad en las versiones de firmware hasta 10.10.2.2 en dispositivos Poly Clariti Manager. El firmware contenía múltiples vulnerabilidades XXS en la versión de JavaScript utilizada.
Summary (en) A vulnerability was discovered in the firmware builds up to 10.10.2.2 in Poly Clariti Manager devices. The firmware contained multiple XXS vulnerabilities in the version of JavaScript used. (en) A vulnerability was discovered in the firmware builds up to 10.10.2.2 in Poly Clariti Manager devices. The firmware contained multiple XSS vulnerabilities in the version of JavaScript used.

06 Aug 2024, 14:16

Type Values Removed Values Added
New CVE

Information

Published : 2024-08-06 14:16

Updated : 2024-08-13 13:06


NVD link : CVE-2024-41910

Mitre link : CVE-2024-41910

CVE.ORG link : CVE-2024-41910


JSON object : View

Products Affected

hp

  • poly_clariti_manager_firmware
  • poly_clariti_manager
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')