Security Vulnerability in HP Support Assistant Software
CVE-2020-6921

7.8HIGH

Key Information:

Vendor: HP
Status: HP Support Assistant
Vendor: CVE Published:; 16 February 2022

Summary

HP Support Assistant software has been found to have security issues that could potentially compromise system integrity. The vulnerability allows communication with untrusted clients, which may expose users to various security risks. It is critical for users of the affected software to apply available patches to safeguard their systems from potential exploits.

Affected Version(s)

HP Support Assistant before 9.11

References

https://support.hp.com/us-en/document/ish_5585999-5586023-16

x_refsource_MISC

https://github.com/mandiant/Vulnerability-Disclosures/blo...

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Feb 16, 2022
Vulnerability Reserved
Jan 13, 2020