Security Vulnerabilities in HP Support Assistant Software
CVE-2020-6918

7.8HIGH

Key Information:

Vendor: HP
Status: HP Support Assistant
Vendor: CVE Published:; 16 February 2022

Summary

HP Support Assistant software has been identified with potential security vulnerabilities that may compromise the integrity of the system and allow unauthorized communication with untrusted clients. These vulnerabilities could lead to unauthorized access or data manipulation, making it critical for users to ensure their software is updated to the latest version to mitigate associated risks.

Affected Version(s)

HP Support Assistant before 9.11

References

https://support.hp.com/us-en/document/ish_5585999-5586023-16

x_refsource_MISC

https://github.com/mandiant/Vulnerability-Disclosures/blo...

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Feb 16, 2022
Vulnerability Reserved
Jan 13, 2020