CVE-2017-2744

5.5MEDIUM

Key Information:

Vendor: HP
Status: HP Support Assistant
Vendor: CVE Published:; 23 January 2018

Summary

The vulnerability allows attacker to extract binaries into protected file system locations in HP Support Assistant before 12.7.26.1.

Affected Version(s)

HP Support Assistant before 12.7.26.1

References

https://support.hp.com/us-en/document/c05648974

vendor-advisoryx_refsource_HP

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 23, 2018
Vulnerability Reserved
Dec 1, 2016

.