CVE-2025-43026

CWE-2813 documents3 sources
Severity
7.1HIGH
EPSS
0.0%
top 86.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
HP Support AssistantHP, Inc. HP Support Assistant
Timeline
PublishedJun 5

Description

A potential security vulnerability has been identified in the HP Support Assistant for versions prior to 9.44.18.0. The vulnerability could potentially allow a local attacker to escalate privileges via an arbitrary file write.

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L

Affected Packages2 packages

NVDhp/support_assistant< 9.44.18.0
CVEListV5hp,_inc./hp_support_assistantSee HP security bulletin reference for affected versions

🔴Vulnerability Details

2
GHSA
GHSA-xh2q-mw6g-7hg3: A potential security vulnerability has been identified in the HP Support Assistant for versions prior to 92025-06-05
CVEList
HP Support Assistant – Potential Escalation of Privilege2025-06-05
CVE-2025-43026 (HIGH CVSS 7.1) | A potential security vulnerability | cvebase.io