CVE-2020-6922

CWE-269Improper Privilege Management3 documents3 sources
Severity
7.8HIGH
EPSS
0.2%
top 52.69%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
HP Support Assistant
Timeline
PublishedFeb 16
Latest updateFeb 17

Description

Potential security vulnerabilities including compromise of integrity, and allowed communication with untrusted clients has been identified in HP Support Assistant software.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

CVEListV5hp_support_assistantbefore 9.11

Patches

Patch: support.hp.comPatch: support.hp.com

🔴Vulnerability Details

2
GHSA
GHSA-35v9-p68v-wpm7: Potential security vulnerabilities including compromise of integrity, and allowed communication with untrusted clients has been identified in HP Suppo2022-02-17
CVEList
CVE-2020-6922: Potential security vulnerabilities including compromise of integrity, and allowed communication with untrusted clients has been identified in HP Suppo2022-02-16
CVE-2020-6922 (HIGH CVSS 7.8) | Potential security vulnerabilities | cvebase.io