Security Vulnerabilities in HP Support Assistant Software
CVE-2020-6920

5.5MEDIUM

Key Information:

Vendor: HP
Status: HP Support Assistant
Vendor: CVE Published:; 16 February 2022

What is CVE-2020-6920?

HP Support Assistant software has been found to have potential security vulnerabilities that could lead to the compromise of the integrity of the system and facilitate communication with untrusted clients. This situation poses a significant risk to users, as it may allow unauthorized access and manipulation of sensitive information.

Affected Version(s)

HP Support Assistant before 9.11

References

https://support.hp.com/us-en/document/ish_5585999-5586023-16

x_refsource_MISC

https://github.com/mandiant/Vulnerability-Disclosures/blo...

x_refsource_MISC

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 16, 2022
Vulnerability Reserved
Jan 13, 2020