Privilege Escalation Vulnerability in HP Hotkey Support Software by HP
CVE-2025-43490

8.4HIGH

Key Information:

Vendor: HP, Inc.
Status: HP Hotkey Support Software
Vendor: CVE Published:; 15 August 2025

What is CVE-2025-43490?

A vulnerability has been discovered in the HP Hotkey Support software's HPAudioAnalytics service, which may allow attackers to escalate their privileges within the system. This vulnerability presents potential risks to affected devices, necessitating immediate attention. HP has initiated software updates to address and mitigate this security concern effectively.

Affected Version(s)

HP Hotkey Support Software See HP security bulletin reference for affected versions

References

https://support.hp.com/us-en/document/ish_12893367-128933...

CVSS V4

Score:

8.4

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 15, 2025
Vulnerability Reserved
Apr 16, 2025

JSON

HP, Inc.

What is CVE-2025-43490?

Affected Version(s)

References

CVSS V4

Timeline