Skip to main content

Hp Fan Control App

1 CVEs product

Monthly

CVE-2026-8864 HIGH PATCH This Week

Local privilege escalation in the HP Fan Control App lets a low-privileged local user gain SYSTEM/administrator-level execution on affected HP endpoints. The flaw stems from CWE-428 (Unquoted Search Path or Element), a classic Windows weakness where a privileged service or process resolves an executable or library from an attacker-controllable path. No public exploit has been identified at time of analysis and it is not listed in CISA KEV; EPSS data was not provided.

HP Privilege Escalation Hp Fan Control App
NVD
CVSS 4.0
7.3
EPSS
0.1%
EPSS 0% CVSS 7.3
HIGH PATCH This Week

Local privilege escalation in the HP Fan Control App lets a low-privileged local user gain SYSTEM/administrator-level execution on affected HP endpoints. The flaw stems from CWE-428 (Unquoted Search Path or Element), a classic Windows weakness where a privileged service or process resolves an executable or library from an attacker-controllable path. No public exploit has been identified at time of analysis and it is not listed in CISA KEV; EPSS data was not provided.

HP Privilege Escalation Hp Fan Control App
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy