Vulnerability in Hp Support Assistant
CVE-2019-6328
HP Support Assistant 8.7.50 and earlier allows a user to gain system privilege and allows unauthorized modification of directories or files. Note: A different vulnerability than CVE-2019-6329.
EPSS: 0.007 (49.7th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.8 (High). Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.
Affected products
- Hp Support Assistant — versions Version 8.7.50 and lower
- Hp Support_assistant
Public proof-of-concept exploits
References
- hp-security-alert@hp.com (x_refsource_CONFIRM, Vendor Advisory)
- hp-security-alert@hp.com (Third Party Advisory, vdb-entry, x_refsource_BID)
Frequently asked questions
- What is CVE-2019-6328?
- CVE-2019-6328 is a high-severity vulnerability in Hp Support Assistant. CVSS score: 7.8/10. Published 2019-06-25.
- How severe is CVE-2019-6328?
- High severity. CVSS v3 base score is 7.8 out of 10.
- Is CVE-2019-6328 known to be exploited?
- 4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.