CVE-2025-43022 HIGH

CVE-2025-43022: Poly Clariti Manager - Multiple Security Vulnerabilities

Vendor Hp Inc.

Product Poly Clariti Manager

Weakness CWE-89 · SQLi

Published July 22, 2025

Last update July 23, 2025

View on NVD All CVEs

CVSS base score

7.3/10

Attack vector Adjacent

Attack complexity Low

Privileges required High

User interaction None

Confidentiality —

Integrity —

CVSS vector

CVSS:4.0/AV:A/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L

What the vulnerability does

01Description

A potential SQL injection vulnerability has been identified in the Poly Clariti Manager for versions prior to 10.12.1. The vulnerability could allow a privileged user to execute SQL commands. HP has addressed the issue in the latest software update.

Key dates

02Disclosure timeline

July 22, 2025 CVE published

July 23, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2025-43022 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/89.html

Related vulnerabilities

Identifiers

CVE CVE-2025-43022

CWE CWE-89

CVSS 7.3 / HIGH

Affected versions