CVE-2022-38395
published 2022-12-12CVE-2022-38395: HP Support Assistant uses HP Performance Tune-up as a diagnostic tool. HP Support Assistant uses Fusion to launch HP Performance Tune-up. It is possible for an…
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
HP Support Assistant uses HP Performance Tune-up as a diagnostic tool. HP Support Assistant uses Fusion to launch HP Performance Tune-up. It is possible for an attacker to exploit the DLL hijacking vulnerability and elevate privileges when Fusion launches the HP Performance Tune-up.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| hp | fusion | < 1.38.2601.0 | 1.38.2601.0 |
| hp | support_assistant | < 9.11 | 9.11 |
| hp_inc | hp_support_assistant | — | — |