Support Assistant
CVE-2019-6329
HIGH
Severity by source
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
1DescriptionNVD
HP Support Assistant 8.7.50 and earlier allows a user to gain system privilege and allows unauthorized modification of directories or files. Note: A different vulnerability than CVE-2019-6328.
AnalysisAI
HP Support Assistant 8.7.50 and earlier allows a user to gain system privilege and allows unauthorized modification of directories or files. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.
Technical ContextAI
HP Support Assistant 8.7.50 and earlier allows a user to gain system privilege and allows unauthorized modification of directories or files. Note: A different vulnerability than CVE-2019-6328. Affected products include: Hp Support Assistant.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.
More in Support Assistant
View allHP Support Assistant before 8.1.52.1 allows remote attackers to bypass authentication via unspecified vectors. Rated cri
Local privilege escalation vulnerability in HP Support Assistant versions before 9.44.18.0 that allows a local attacker
A potential security vulnerability has been identified in the HP Support Assistant, which allows a local attacker to esc
A potential security vulnerability has been identified in the HP Support Assistant for versions prior to 9.47.41.0. The
HP Support Assistant uses HP Performance Tune-up as a diagnostic tool. Rated high severity (CVSS 7.8), this vulnerabilit
HP Support Assistant 8.7.50 and earlier allows a user to gain system privilege and allows unauthorized modification of d
Same technique Authentication Bypass
View allShare
External POC / Exploit Code
Leaving vuln.today