Unrated severityNVD Advisory· Published May 21, 2008· Updated Apr 23, 2026

CVE-2008-2390

Description

Hpufunction.dll 4.0.0.1 in HP Software Update exposes the unsafe (1) ExecuteAsync and (2) Execute methods, which allows remote attackers to execute arbitrary code via an absolute pathname in the first argument.

Affected products

Microfocus/Software Update
cpe:2.3:a:hp:software_update:4.0.0.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

exchange.xforce.ibmcloud.com/vulnerabilities/42249nvd
www.exploit-db.com/exploits/5511nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.004
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000