CVE-2025-14432

EPSS 0.05%
Veröffentlicht 16.12.2025 15:15:04
Zuletzt bearbeitet 18.12.2025 19:54:18
Quelle hp-security-alert@hp.com
CVE-Watchlists
Login
Unerledigt
Login

Poly Video - Sensitive Data Might Be Written to Log File

In limited scenarios, sensitive data might be written to the log file if an admin uses Microsoft Teams Admin Center (TAC) to make device configuration changes. The affected log file is visible only to users with admin credentials. This is limited to Microsoft TAC and does not affect configuration changes made using the provisioning server or the device WebUI.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

NVD 2 VulnDex Vulnerability Enrichment 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Hp ≫ Poly Videoos Version < 4.6.1-444242

   Hp ≫ Poly Eagleeye Cube Version-
   Hp ≫ Poly Eagleeye Iv Version-
   Hp ≫ Poly Studio A2 Version-
   Hp ≫ Poly Studio E60 Version-
   Hp ≫ Poly Studio E70 Version-
   Hp ≫ Poly Studio G62 Version-
   Hp ≫ Poly Studio G7500 Version-
   Hp ≫ Poly Studio Usb Version-
   Hp ≫ Poly Studio X30 Version-
   Hp ≫ Poly Studio X32 Version-
   Hp ≫ Poly Studio X50 Version-
   Hp ≫ Poly Studio X52 Version-
   Hp ≫ Poly Studio X70 Version-
   Hp ≫ Poly Studio X72 Version-

Hp ≫ Poly Tcos Version < 6.6.1-7001859

Hp ≫ Poly Tc10 Version-
Hp ≫ Poly Tc8 Version-

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.16

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.9	1.2	3.6	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
hp-security-alert@hp.com	8.1	0	0	CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CWE-532 Insertion of Sensitive Information into Log File

The product writes sensitive information to a log file.

https://support.hp.com/us-en/document/ish_13612310-13612332-16/hpsbpy04080

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-14432

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-14432

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-14432

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-14432