Security Vulnerability in HP Support Assistant Software
CVE-2020-6919

7.8HIGH

Key Information:

Vendor: HP
Status: HP Support Assistant
Vendor: CVE Published:; 16 February 2022

Summary

HP Support Assistant software has been identified with potential security vulnerabilities that could compromise the integrity of the system. These vulnerabilities may enable unauthorized communication with untrusted clients, leading to risks such as data exposure and system integrity breaches. Users should be aware of these security concerns and take necessary precautions including software updates and implementing security measures.

Affected Version(s)

HP Support Assistant before 9.11

References

https://support.hp.com/us-en/document/ish_5585999-5586023-16

x_refsource_MISC

https://github.com/mandiant/Vulnerability-Disclosures/blo...

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Feb 16, 2022
Vulnerability Reserved
Jan 13, 2020