Vulnerability in Hp Support Assistant
CVE-2019-6329
HP Support Assistant 8.7.50 and earlier allows a user to gain system privilege and allows unauthorized modification of directories or files. Note: A different vulnerability than CVE-2019-6328.
EPSS: 0.016 (73.2th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.
Affected products
- Hp Support Assistant — versions Version 8.7.50 and lower
- Hp Support_assistant
Public proof-of-concept exploits
References
- hp-security-alert@hp.com (x_refsource_CONFIRM, Vendor Advisory)
- hp-security-alert@hp.com (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_BID)
Frequently asked questions
- What is CVE-2019-6329?
- CVE-2019-6329 is a high-severity vulnerability in Hp Support Assistant. CVSS score: 7.8/10. Published 2019-06-25.
- How severe is CVE-2019-6329?
- High severity. CVSS v3 base score is 7.8 out of 10.
- Is CVE-2019-6329 known to be exploited?
- 5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.