Command Injection and Privilege Escalation in HP Device Manager
CVE-2023-26295
9.8CRITICAL
What is CVE-2023-26295?
Previous versions of HP Device Manager, specifically those released before version 5.0.10, are susceptible to a security issue that allows for command injection. This vulnerability can potentially be exploited to gain elevated privileges, compromising the integrity of the device management software. Proper patching and updates are essential to safeguard against these risks and ensure the secure operation of HP devices.
Affected Version(s)
HP Device Manager 5.0.9