Primary

Context

Poly Clariti Manager Default Password Information Disclosure Vulnerability

Vulnerability

A vulnerability allowing the use and retrieval of the default password has been identified in Poly Clariti Manager versions prior to 10.12.1. This issue could lead to unauthorized access or actions within the application. HP has released a patch for this vulnerability in the latest software update.

Impact

Exploitation of this vulnerability could result in unauthorized access to the application, potentially allowing for further actions or access within the Poly Clariti Manager environment.

Remediation

Users are advised to update to version 10.12.2 or later. The latest builds can be obtained through the Poly Lens Management Console. After accessing the console, navigate to the 'Product Catalog' section for Clariti Manager and select the 'rprm10.12.2 bin' file.

Added: Jul 22, 2025, 11:17 PM

Updated: Jul 23, 2025, 12:30 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Poly Clariti Manager Default Password Information Disclosure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating