Lucene search

[email protected]CVE-2023-5739

HistoryOct 31, 2023 - 4:15 p.m.

CVE-2023-5739

2023-10-3116:15:10

[email protected]

web.nvd.nist.gov

hardware

diagnostics

windows

elevation

privilege

vulnerability

cve-2023-5739

nvd

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Certain versions of HP PC Hardware Diagnostics Windows are potentially vulnerable to elevation of privilege.

Affected configurations

NVD

Node

hpimage_assistantRange<5.1.8

hppc_hardware_diagnosticsRange<2.4.0.0windows

Node

hpthunderbolt_dock_g2_firmwareMatch-

AND

hpthunderbolt_dock_g2Match-

CPENameOperatorVersion
hp:image_assistanthp image assistantlt5.1.8
hp:pc_hardware_diagnosticshp pc hardware diagnosticslt2.4.0.0

CPE	Name	Operator	Version
hp:image_assistant	hp image assistant	lt	5.1.8
hp:pc_hardware_diagnostics	hp pc hardware diagnostics	lt	2.4.0.0

CNA Affected

[
  {
    "vendor": "HP Inc.",
    "product": "HP PC Hardware Diagnostics Windows",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "See HP Security Bulletin reference for affected versions.",
        "status": "affected"
      }
    ]
  }
]

References

support.hp.com/us-en/document/ish_8128401-8128440-16

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Related for CVE-2023-5739

prion1 cvelist1 nvd1 hp1