Lucene search
K
HpSupport Assistant

19 matches found

CVE
CVE
added 2019/06/25 4:23 p.m.163 views

CVE-2019-6328

CVE-2019-6328 affects HP Support Assistant 8.7.50 and earlier. Connected exploit details describe a local privilege escalation via the HP Support Framework service: the HPSAObjUtil8 component changes permissions of XML files under C:\ProgramData\Hewlett-Packard\HP Support Framework\Logs\Temp\HPSA...

7.8CVSS7.6AI score0.00733EPSS
CVE
CVE
added 2019/06/25 4:24 p.m.161 views

CVE-2019-6329

CVE-2019-6329 is a local privilege escalation affecting HP Support Assistant 8.7.50 and earlier. The connected exploit repository details a chain: when the user triggers the HP.SupportFramework.ServiceManager interface RunAnalysis, HPSAObjUtil8.exe runs with SYSTEM privileges and modifies permiss...

7.8CVSS7.6AI score0.0163EPSS
CVE
CVE
added 2023/01/30 9:35 p.m.94 views

CVE-2022-23454

CVE-2022-23454 affects HP Support Assistant. The connected documents describe vulnerabilities enabling privilege escalation, integrity compromise, and unauthorized file modification, with an attack vector limited to local access and user interaction not required, yielding a high impact (CVSS v3.1...

7.8CVSS7.9AI score0.00186EPSS
CVE
CVE
added 2022/01/28 7:9 p.m.91 views

CVE-2022-23456

CVE-2022-23456 relates to HP Support Assistant and is described in multiple sources as a potential arbitrary file deletion vulnerability. The connected Red Hat/EU ENISA/Nessus entries corroborate the issue title but do not introduce new technical details beyond what HP documents state. The HP adv...

5.5CVSS5.5AI score0.00276EPSS
CVE
CVE
added 2022/11/18 8:52 p.m.80 views

CVE-2022-38395

Summary: CVE-2022-38395 affects HP Support Assistant that uses Fusion to launch HP Performance Tune-up. The underlying issue is a DLL hijacking vulnerability that could allow a local attacker to elevate privileges when Fusion starts the HP Performance Tune-up. What’s affected (supported by docume...

7.8CVSS7.5AI score0.02799EPSS
CVE
CVE
added 2023/01/30 9:36 p.m.75 views

CVE-2022-23455

The CVE-2022-23455 entry concerns HP Support Assistant. Reported vulnerabilities include privilege escalation, integrity compromise, allowing communication with untrusted clients, and unauthorized modification of files. No exploit details are provided. Remediation guidance from the associated HP ...

7.8CVSS7.9AI score0.00186EPSS
CVE
CVE
added 2023/01/30 9:34 p.m.74 views

CVE-2022-23453

CVE-2022-23453 affects HP Support Assistant. The HP advisory HPSBGN03762 documents multiple vulnerabilities in HP Support Assistant, including privilege escalation, integrity compromise, communication with untrusted clients, and unauthorized modification of files. The CVSS 3.1 metrics indicate a ...

7.8CVSS7.9AI score0.00186EPSS
CVE
CVE
added 2022/02/16 4:38 p.m.67 views

CVE-2020-6920

CVE-2020-6920 affects HP Support Assistant. According to connected documents, multiple vulnerabilities have been identified in HP Support Assistant software, including privilege escalation, compromise of integrity, allowed communication with untrusted clients, and unauthorized modification of fil...

5.5CVSS5.7AI score0.00843EPSS
CVE
CVE
added 2022/02/16 4:38 p.m.62 views

CVE-2020-6917

CVE-2020-6917 concerns HP Support Assistant with vulnerabilities that can compromise integrity and allow communication with untrusted clients. Connected sources describe authorization issues in HP Support Assistant and cross-referenced CVEs (including 6917) affecting multiple versions. The HP adv...

7.8CVSS7.8AI score0.00851EPSS
CVE
CVE
added 2022/02/16 4:38 p.m.61 views

CVE-2020-6921

CVE-2020-6921 affects HP Support Assistant. The record documents potential security vulnerabilities including compromise of integrity and the ability to communicate with untrusted clients. No exploitation details are provided in the connected documents. The CVE entry is linked to HP’s advisory HP...

7.8CVSS7.8AI score0.00851EPSS
CVE
CVE
added 2025/06/05 7:41 p.m.60 views

CVE-2025-43026

HP Support Assistant is affected in versions prior to 9.44.18.0 by a local privilege-escalation vulnerability via arbitrary file write. The issue is documented across multiple sources (NVD/NiST/Nessus plugin and vendor guidance) with a consistent remediation: upgrade to version 9.44.18.0 or later...

7.8CVSS6.7AI score0.00114EPSS
CVE
CVE
added 2022/02/16 4:38 p.m.59 views

CVE-2020-6922

CVE-2020-6922 applies to HP Support Assistant with potential integrity compromise and exposure to untrusted clients. Connected records confirm multiple vulnerabilities in HP Support Assistant and point to the HP advisory HPSBGN03762 with guidance to update to the latest version; no specific fixed...

7.8CVSS7.8AI score0.00851EPSS
CVE
CVE
added 2016/03/19 3:0 p.m.57 views

CVE-2016-2245

HP Support Assistant prior to 8.1.52.1 contains an authentication bypass vulnerability (CVE-2016-2245). Remote attackers could bypass authentication via unspecified vectors. Impact per sources indicates high confidentiality/integrity/availability concerns (CVSS v3 base score 9.8, critical). HP ha...

10CVSS9.5AI score0.05937EPSS
CVE
CVE
added 2022/02/16 4:37 p.m.57 views

CVE-2020-6918

CVE-2020-6918 affects HP Support Assistant. The connected sources describe multiple vulnerabilities in HP Support Assistant software, including privilege escalation, integrity compromise, and the ability to communicate with untrusted clients. HP advises updating to the latest HP Support Assistant...

7.8CVSS7.8AI score0.00851EPSS
CVE
CVE
added 2022/02/16 4:37 p.m.56 views

CVE-2020-6919

CVE-2020-6919 relates to HP Support Assistant vulnerabilities leading to potential integrity compromise and communication with untrusted clients. Documented issues include privilege escalation, unauthorized file modifications, and exposure of sensitive data. Exploitation details are not provided ...

7.8CVSS7.8AI score0.00851EPSS
CVE
CVE
added 2019/03/27 3:39 p.m.48 views

CVE-2018-5927

CVE-2018-5927 affects HP Support Assistant prior to version 8.7.50.3. The HP advisory (C06242762) documents an arbitrary code execution risk via a DLL loading vulnerability exploitable by a local attacker with access to the host; the impact is local code execution with high impact on confidential...

7.3CVSS7AI score0.00383EPSS
CVE
CVE
added 2018/01/23 4:0 p.m.47 views

CVE-2017-2744

HP Support Assistant (Windows) is affected by CVE-2017-2744, where an attacker could extract binaries into protected file-system locations. The issue affects the HP Support Assistant Framework prior to 12.7.26.1, enabling privilege escalation via manipulation of protected directories. HP’s adviso...

5.5CVSS5.4AI score0.00479EPSS
CVE
CVE
added 2025/07/08 3:25 p.m.20 views

CVE-2025-43019

HP Support Assistant is affected by CVE-2025-43019, a local privilege-escalation vulnerability arising from arbitrary file deletion. Connected sources confirm the issue and relate it to the HP Support Assistant product lines, with HP’s advisory HPSBGN04031 noting affected versions and a minimum m...

7.8CVSS6.7AI score0.0011EPSS
CVE
CVE
added 2025/10/01 6:44 p.m.11 views

CVE-2025-10578

CVE-2025-10578 affects HP Support Assistant, prior to version 9.47.41.0. The documented impact is local privilege escalation via an arbitrary file write. The connected sources consistently identify the affected product and version range, and recommend updating to 9.47.41.0 or later as the remedia...

7.8CVSS6.6AI score0.00109EPSS