CVE-2025-14432

High CVSS: 8.1

In limited scenarios, sensitive data might be written to the log file if an admin uses Microsoft Teams Admin Center (TAC) to make device configuration changes. The affected log file is visible only to users with admin credentials. This is limited to Microsoft TAC and does not affect configuration changes made using the provisioning server or the device WebUI.

Vendor

Product

Poly Videoos

CWE

CWE-532

Yayın Tarihi

2025-12-16 16:15:57

Güncelleme

2025-12-18 19:54:18

Source Identifier

hp-security-alert@hp.com

KEV Date Added

Kategoriler

CWE-532 Poly Videoos HIGH Hp 2025

Referanslar

https://support.hp.com/us-en/document/ish_13612310-13612332-16/hpsbpy04080

Benzer Kayıtlar

Medium

CVE-2026-2915

HP System Event Utility might allow denial of service with elevated arbitrary file writes. This potential vulnerability…

Medium

CVE-2026-1996

Certain HP OfficeJet Pro printers may be vulnerable to potential denial of service when the IPP requests are mishandled,…

Medium

CVE-2026-1997

Certain HP OfficeJet Pro printers may expose information if Cross‑Origin Resource Sharing (CORS) is misconfigured, poten…

Medium

CVE-2025-11531

HP System Event Utility and Omen Gaming Hub might allow execution of certain files outside of their restricted paths. T…

Medium

CVE-2025-13492

A potential security vulnerability has been identified in HP Image Assistant for versions prior to 5.3.3. The vulnerabil…

Medium

CVE-2025-12784

Certain HP LaserJet Pro printers may be vulnerable to information disclosure leading to credential exposure by altering…