8.1

CVE-2025-14432

In limited scenarios, sensitive data might be written to the log file if an admin uses Microsoft Teams Admin Center (TAC) to make device configuration changes. The affected log file is visible only to users with admin credentials. This is limited to Microsoft TAC and does not affect configuration changes made using the provisioning server or the device WebUI.
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
HpPoly Videoos Version < 4.6.1-444242
   HpPoly Eagleeye Cube Version-
   HpPoly Eagleeye Iv Version-
   HpPoly Studio A2 Version-
   HpPoly Studio E60 Version-
   HpPoly Studio E70 Version-
   HpPoly Studio G62 Version-
   HpPoly Studio G7500 Version-
   HpPoly Studio Usb Version-
   HpPoly Studio X30 Version-
   HpPoly Studio X32 Version-
   HpPoly Studio X50 Version-
   HpPoly Studio X52 Version-
   HpPoly Studio X70 Version-
   HpPoly Studio X72 Version-
HpPoly Tcos Version < 6.6.1-7001859
   HpPoly Tc10 Version-
   HpPoly Tc8 Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.02% 0.059
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.9 1.2 3.6
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
hp-security-alert@hp.com 8.1 0 0
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
CWE-532 Insertion of Sensitive Information into Log File

The product writes sensitive information to a log file.