CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

44 matches found

RedhatCVE•added 2025/08/16 3:26 p.m.•3 views

CVE-2025-36613

SupportAssist for Home PCs versions 4.6.3 and prior and SupportAssist for Business PCs versions 4.5.3 and prior, contains an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to unauthorized access...

7.8CVSS7AI score0.0002EPSS

Exploits0References1

NVD•added 2025/08/14 3:15 p.m.•3 views

CVE-2025-38738

SupportAssist for Home PCs Installer exe versions 4.8.2.29006 and prior, contains an Incorrect Privilege Assignment vulnerability in the Installer. A low privileged attacker with local access could potentially exploit this vulnerability, leading to elevation of privileges...

7.8CVSS0.00016EPSS

Exploits0References1

Vulnrichment•added 2025/08/14 2:46 p.m.•2 views

CVE-2025-36613

2.8CVSS6.9AI score0.0002EPSS

Exploits0References1

CVE•added 2025/08/14 2:46 p.m.•12 views

CVE-2025-36613

CVE-2025-36613 concerns Dell SupportAssist for Home PCs (≤4.6.3) and SupportAssist for Business PCs (≤4.5.3). The issue is an incorrect privilege assignment that a local, low-privilege attacker could exploit to gain unauthorized access. Multiple connected sources corroborate the affected versions...

7.8CVSS6.9AI score0.0002EPSS

Exploits0References1Affected Software2

Cvelist•added 2025/08/14 2:36 p.m.•5 views

CVE-2025-38738

6.7CVSS0.00016EPSS

Exploits0References1

Positive Technologies•added 2024/11/12 12:0 a.m.•2 views

PT-2024-19190 · Sound Research · Secomn64

Name of the Vulnerable Software and Affected Versions: HP PC products using the Sound Research SECOMN64 driver affected versions not specified Description: The issue concerns potential vulnerabilities in the audio package of certain HP PC products that use the Sound Research SECOMN64 driver. Thes...

8.8CVSS7.5AI score0.00074EPSS

Exploits0References4

Positive Technologies•added 2023/11/14 12:0 a.m.•2 views

PT-2023-23937 · Intel · Hdmi Firmware Update Tool

Name of the Vulnerable Software and Affected Versions: IntelR NUC Kits NUC7i3DN, NUC7i5DN, NUC7i7DN HDMI firmware update tool software versions prior to 1.79.1.1 Description: The issue is related to an unquoted search path in the HDMI firmware update tool software, which may allow an authenticate...

7.3CVSS7.2AI score0.00156EPSS

Exploits0References3

OSV•added 2023/06/13 5:15 p.m.•1 views

CVE-2022-31635

Potential time-of-check to time-of-use TOCTOU vulnerabilities have been identified in the BIOS for certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure...

7.8CVSS6AI score

Exploits0References1

OSV•added 2023/06/13 5:15 p.m.•1 views

CVE-2022-31639

7.8CVSS6AI score

Exploits0References1

CNNVD•added 2023/06/13 12:0 a.m.•3 views

HP PC 安全漏洞

HP PC is a computer product of Hewlett-Packard HP, an American company. A security vulnerability exists in the HP PC BIOS. An attacker could exploit the vulnerability to execute arbitrary code, privilege escalation, denial of service, and information disclosure...

7.8CVSS7.7AI score0.00174EPSS

Exploits0References2

Positive Technologies•added 2023/02/10 12:0 a.m.•2 views

PT-2023-13367 · Dell · Dell Supportassist

Name of the Vulnerable Software and Affected Versions: Dell SupportAssist for Home PCs versions 3.11.2 and prior Description: The issue is related to an Overly Permissive Cross-domain Whitelist, which could allow an authenticated non-admin user to potentially exploit it and obtain sensitive...

6.5CVSS6.2AI score0.00095EPSS

Exploits0References2

CNNVD•added 2023/02/01 12:0 a.m.•2 views

HP PC 安全漏洞

HP PC is a computer product of Hewlett-Packard HP Company, USA. The HP PC has a security vulnerability that stems from a potential flaw in the BIOS UEFI firmware that could allow arbitrary code execution...

7.8CVSS7.8AI score0.00062EPSS

Exploits0References2

Prion•added 2022/10/18 12:15 p.m.•8 views

Privilege escalation

AsusSwitch.exe on ASUS personal computers running Windows sets weak file permissions, leading to local privilege escalation this also can be used to delete files within the system arbitrarily. This affects ASUS System Control Interface 3 before 3.1.5.0, and AsusSwitch.exe before 1.0.10.0...

4.3CVSS7.7AI score0.00025EPSS

Exploits0References2Affected Software2

CVE•added 2022/10/18 12:0 a.m.•51 views

CVE-2022-36438

Summary: CVE-2022-36438 affects ASUS System Control Interface 3 (before 3.1.5.0) and AsusSwitch.exe (before 1.0.10.0) on Windows. The issue is weak file permissions in these components, which enables local privilege escalation and could allow arbitrary file deletion within the system. Root cause:...

7.8CVSS7.7AI score0.00025EPSS

Exploits0References2Affected Software2

Positive Technologies•added 2022/08/11 12:0 a.m.•2 views

PT-2022-4227 · Hewlett Packard · Hp Pc

Name of the Vulnerable Software and Affected Versions: HP PC products affected versions not specified Description: The issue is related to potential vulnerabilities in the system BIOS of certain HP PC products. These vulnerabilities might allow arbitrary code execution, escalation of privilege,...

7.8CVSS8.1AI score0.00121EPSS

Exploits0References6

OSV•added 2022/03/11 6:15 p.m.•1 views

CVE-2022-23929

Potential vulnerabilities have been identified in the system BIOS of certain HP PC products which may allow Escalation of Privilege, Arbitrary Code Execution, Unauthorized Code Execution, Denial of Service, and Information Disclosure...

8.2CVSS5.8AI score0.00062EPSS

Exploits0References1

OSV•added 2022/03/02 10:15 p.m.•1 views

CVE-2022-23957

Potential vulnerabilities have been identified in the BIOS for some HP PC products which may allow denial of service...

5.5CVSS5.8AI score

Exploits0References1