CVE-2024-41910: XSS
First published: Tue Aug 06 2024(Updated: )
A vulnerability was discovered in the firmware builds up to 10.10.2.2 in Poly Clariti Manager devices. The firmware contained multiple XSS vulnerabilities in the version of JavaScript used.
Credit: hp-security-alert@hp.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| HP Poly Clariti Manager Firmware | <=10.10.2.2 | |
| HP Poly Clariti Manager Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2024-41910?
CVE-2024-41910 has been classified as having a high severity due to multiple XSS vulnerabilities discovered.
How do I fix CVE-2024-41910?
To fix CVE-2024-41910, update the firmware of your Poly Clariti Manager devices to a version greater than 10.10.2.2.
What devices are affected by CVE-2024-41910?
CVE-2024-41910 affects all versions of Poly Clariti Manager firmware up to and including 10.10.2.2.
What type of vulnerabilities does CVE-2024-41910 include?
CVE-2024-41910 includes multiple cross-site scripting (XSS) vulnerabilities in the firmware.
Is there a workaround for CVE-2024-41910?
There is currently no known workaround for CVE-2024-41910; updating the firmware is the recommended mitigation.
- agent/references
- agent/author
- agent/type
- agent/first-publish-date
- agent/description
- agent/severity
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/weakness
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/hp
- canonical/hp poly clariti manager firmware
- version/hp poly clariti manager firmware/10.10.2.2