CVE-2022-23455
https://notcve.org/view.php?id=CVE-2022-23455
Potential security vulnerabilities have been identified in HP Support Assistant. These vulnerabilities include privilege escalation, compromise of integrity, allowed communication with untrusted clients, and unauthorized modification of files. • https://support.hp.com/us-en/document/ish_5585999-5586023-16/hpsbgn03762 •
CVE-2022-23454
https://notcve.org/view.php?id=CVE-2022-23454
Potential security vulnerabilities have been identified in HP Support Assistant. These vulnerabilities include privilege escalation, compromise of integrity, allowed communication with untrusted clients, and unauthorized modification of files. • https://support.hp.com/us-en/document/ish_5585999-5586023-16/hpsbgn03762 •
CVE-2022-23453
https://notcve.org/view.php?id=CVE-2022-23453
Potential security vulnerabilities have been identified in HP Support Assistant. These vulnerabilities include privilege escalation, compromise of integrity, allowed communication with untrusted clients, and unauthorized modification of files. • https://support.hp.com/us-en/document/ish_5585999-5586023-16/hpsbgn03762 •
CVE-2022-38395
https://notcve.org/view.php?id=CVE-2022-38395
HP Support Assistant uses HP Performance Tune-up as a diagnostic tool. HP Support Assistant uses Fusion to launch HP Performance Tune-up. It is possible for an attacker to exploit the DLL hijacking vulnerability and elevate privileges when Fusion launches the HP Performance Tune-up. HP Support Assistant utiliza HP Performance Tune-up como herramienta de diagnóstico. HP Support Assistant utiliza Fusion para iniciar HP Performance Tune-up. • https://support.hp.com/us-en/document/ish_6788123-6788147-16/hpsbhf03809 • CWE-427: Uncontrolled Search Path Element •
CVE-2020-6921
https://notcve.org/view.php?id=CVE-2020-6921
Potential security vulnerabilities including compromise of integrity, and allowed communication with untrusted clients has been identified in HP Support Assistant software. En el software HP Support Assistant han sido identificadas posibles vulnerabilidades de seguridad que incluyen el compromiso de la integridad y la comunicación permitida con clientes que no son confiables • https://github.com/mandiant/Vulnerability-Disclosures/blob/master/2022/MNDT-2022-0030/MNDT-2022-0030.md https://support.hp.com/us-en/document/ish_5585999-5586023-16 •