Poly Clariti Manager Firmware <10.10.2.2: Unsanitized User Input
CVE-2024-41913 Published on August 6, 2024
Clariti Manager – Arbitrary File Upload
A vulnerability was discovered in the firmware builds up to 10.10.2.2 in Poly Clariti Manager devices. The firmware flaw does not properly sanitize User input.
Vulnerability Analysis
CVE-2024-41913 can be exploited with network access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to be very high.
Weakness Type
What is an Unrestricted File Upload Vulnerability?
The software allows the attacker to upload or transfer files of dangerous types that can be automatically processed within the product's environment.
CVE-2024-41913 has been classified to as an Unrestricted File Upload vulnerability or weakness.
Products Associated with CVE-2024-41913
Want to know whenever a new CVE is published for HP Poly Clariti Manager Firmware? stack.watch will email you.
Affected Versions
HP Inc. Poly Clariti Manager Version See HP Security Bulletin reference for affected versions. is affected by CVE-2024-41913Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.