Skip to main content

Support Assistant

7 CVEs product

Monthly

CVE-2025-10578 HIGH This Week

A potential security vulnerability has been identified in the HP Support Assistant for versions prior to 9.47.41.0. The vulnerability could potentially allow a local attacker to escalate privileges via an arbitrary file write.

Privilege Escalation Support Assistant
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2025-43019 HIGH This Week

A potential security vulnerability has been identified in the HP Support Assistant, which allows a local attacker to escalate privileges via an arbitrary file deletion.

Privilege Escalation Support Assistant
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2025-43026 HIGH This Week

Local privilege escalation vulnerability in HP Support Assistant versions before 9.44.18.0 that allows a local attacker with limited user privileges to write arbitrary files and escalate to higher privilege levels without user interaction. The vulnerability carries a CVSS score of 7.8 (high severity) and exploits improper file permission handling in the support application; while KEV status and active exploitation data are not provided in the source material, the low attack complexity and local attack vector suggest this is a realistic threat for systems running vulnerable versions.

Privilege Escalation HP Support Assistant
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2022-38395 HIGH This Week

HP Support Assistant uses HP Performance Tune-up as a diagnostic tool. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure HP Fusion Support Assistant
NVD
CVSS 3.1
7.8
EPSS
2.8%
CVE-2019-6329 HIGH This Week

HP Support Assistant 8.7.50 and earlier allows a user to gain system privilege and allows unauthorized modification of directories or files. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass HP Support Assistant
NVD
CVSS 3.1
7.8
EPSS
1.6%
CVE-2019-6328 HIGH This Week

HP Support Assistant 8.7.50 and earlier allows a user to gain system privilege and allows unauthorized modification of directories or files. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass HP Support Assistant
NVD
CVSS 3.0
7.8
EPSS
0.7%
CVE-2016-2245 CRITICAL Act Now

HP Support Assistant before 8.1.52.1 allows remote attackers to bypass authentication via unspecified vectors. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 14.5% and no vendor patch available.

HP Authentication Bypass Support Assistant
NVD
CVSS 3.0
9.8
EPSS
14.5%
EPSS 0% CVSS 7.8
HIGH This Week

A potential security vulnerability has been identified in the HP Support Assistant for versions prior to 9.47.41.0. The vulnerability could potentially allow a local attacker to escalate privileges via an arbitrary file write.

Privilege Escalation Support Assistant
NVD
EPSS 0% CVSS 7.8
HIGH This Week

A potential security vulnerability has been identified in the HP Support Assistant, which allows a local attacker to escalate privileges via an arbitrary file deletion.

Privilege Escalation Support Assistant
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Local privilege escalation vulnerability in HP Support Assistant versions before 9.44.18.0 that allows a local attacker with limited user privileges to write arbitrary files and escalate to higher privilege levels without user interaction. The vulnerability carries a CVSS score of 7.8 (high severity) and exploits improper file permission handling in the support application; while KEV status and active exploitation data are not provided in the source material, the low attack complexity and local attack vector suggest this is a realistic threat for systems running vulnerable versions.

Privilege Escalation HP Support Assistant
NVD
EPSS 3% CVSS 7.8
HIGH This Week

HP Support Assistant uses HP Performance Tune-up as a diagnostic tool. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure HP Fusion +1
NVD
EPSS 2% CVSS 7.8
HIGH This Week

HP Support Assistant 8.7.50 and earlier allows a user to gain system privilege and allows unauthorized modification of directories or files. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass HP Support Assistant
NVD
EPSS 1% CVSS 7.8
HIGH This Week

HP Support Assistant 8.7.50 and earlier allows a user to gain system privilege and allows unauthorized modification of directories or files. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass HP Support Assistant
NVD
EPSS 14% CVSS 9.8
CRITICAL Act Now

HP Support Assistant before 8.1.52.1 allows remote attackers to bypass authentication via unspecified vectors. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 14.5% and no vendor patch available.

HP Authentication Bypass Support Assistant
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy