Support Assistant
by Microfocus
CVEs (18)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2016-2245 | Cri | 0.64 | 9.8 | 0.06 | Mar 19, 2016 | HP Support Assistant before 8.1.52.1 allows remote attackers to bypass authentication via unspecified vectors. | ||
| CVE-2019-6329 | 0.01 | — | 0.02 | Jun 25, 2019 | HP Support Assistant 8.7.50 and earlier allows a user to gain system privilege and allows unauthorized modification of directories or files. Note: A different vulnerability than CVE-2019-6328. | |||
| CVE-2025-10578 | 0.00 | — | 0.00 | Oct 1, 2025 | A potential security vulnerability has been identified in the HP Support Assistant for versions prior to 9.47.41.0. The vulnerability could potentially allow a local attacker to escalate privileges via an arbitrary file write. | |||
| CVE-2025-43019 | 0.00 | — | 0.00 | Jul 8, 2025 | A potential security vulnerability has been identified in the HP Support Assistant, which allows a local attacker to escalate privileges via an arbitrary file deletion. | |||
| CVE-2025-43026 | 0.00 | — | 0.00 | Jun 5, 2025 | A potential security vulnerability has been identified in the HP Support Assistant for versions prior to 9.44.18.0. The vulnerability could potentially allow a local attacker to escalate privileges via an arbitrary file write. | |||
| CVE-2022-23455 | 0.00 | — | 0.00 | Jan 30, 2023 | Potential security vulnerabilities have been identified in HP Support Assistant. These vulnerabilities include privilege escalation, compromise of integrity, allowed communication with untrusted clients, and unauthorized modification of files. | |||
| CVE-2022-23454 | 0.00 | — | 0.00 | Jan 30, 2023 | Potential security vulnerabilities have been identified in HP Support Assistant. These vulnerabilities include privilege escalation, compromise of integrity, allowed communication with untrusted clients, and unauthorized modification of files. | |||
| CVE-2022-23453 | 0.00 | — | 0.00 | Jan 30, 2023 | Potential security vulnerabilities have been identified in HP Support Assistant. These vulnerabilities include privilege escalation, compromise of integrity, allowed communication with untrusted clients, and unauthorized modification of files. | |||
| CVE-2022-38395 | 0.00 | — | 0.03 | Nov 18, 2022 | HP Support Assistant uses HP Performance Tune-up as a diagnostic tool. HP Support Assistant uses Fusion to launch HP Performance Tune-up. It is possible for an attacker to exploit the DLL hijacking vulnerability and elevate privileges when Fusion launches the HP Performance… | |||
| CVE-2020-6921 | 0.00 | — | 0.01 | Feb 16, 2022 | Potential security vulnerabilities including compromise of integrity, and allowed communication with untrusted clients has been identified in HP Support Assistant software. | |||
| CVE-2020-6920 | 0.00 | — | 0.01 | Feb 16, 2022 | Potential security vulnerabilities including compromise of integrity, and allowed communication with untrusted clients has been identified in HP Support Assistant software. | |||
| CVE-2020-6922 | 0.00 | — | 0.01 | Feb 16, 2022 | Potential security vulnerabilities including compromise of integrity, and allowed communication with untrusted clients has been identified in HP Support Assistant software. | |||
| CVE-2020-6917 | 0.00 | — | 0.01 | Feb 16, 2022 | Potential security vulnerabilities including compromise of integrity, and allowed communication with untrusted clients has been identified in HP Support Assistant software. | |||
| CVE-2020-6919 | 0.00 | — | 0.01 | Feb 16, 2022 | Potential security vulnerabilities including compromise of integrity, and allowed communication with untrusted clients has been identified in HP Support Assistant software. | |||
| CVE-2020-6918 | 0.00 | — | 0.01 | Feb 16, 2022 | Potential security vulnerabilities including compromise of integrity, and allowed communication with untrusted clients has been identified in HP Support Assistant software. | |||
| CVE-2022-23456 | 0.00 | — | 0.00 | Jan 28, 2022 | Potential arbitrary file deletion vulnerability has been identified in HP Support Assistant software. | |||
| CVE-2019-6328 | 0.00 | — | 0.01 | Jun 25, 2019 | HP Support Assistant 8.7.50 and earlier allows a user to gain system privilege and allows unauthorized modification of directories or files. Note: A different vulnerability than CVE-2019-6329. | |||
| CVE-2018-5927 | 0.00 | — | 0.00 | Mar 27, 2019 | HP Support Assistant before 8.7.50.3 allows an unauthorized person with local access to load arbitrary code. |
- risk 0.64cvss 9.8epss 0.06
HP Support Assistant before 8.1.52.1 allows remote attackers to bypass authentication via unspecified vectors.
- CVE-2019-6329Jun 25, 2019risk 0.01cvss —epss 0.02
HP Support Assistant 8.7.50 and earlier allows a user to gain system privilege and allows unauthorized modification of directories or files. Note: A different vulnerability than CVE-2019-6328.
- CVE-2025-10578Oct 1, 2025risk 0.00cvss —epss 0.00
A potential security vulnerability has been identified in the HP Support Assistant for versions prior to 9.47.41.0. The vulnerability could potentially allow a local attacker to escalate privileges via an arbitrary file write.
- CVE-2025-43019Jul 8, 2025risk 0.00cvss —epss 0.00
A potential security vulnerability has been identified in the HP Support Assistant, which allows a local attacker to escalate privileges via an arbitrary file deletion.
- CVE-2025-43026Jun 5, 2025risk 0.00cvss —epss 0.00
A potential security vulnerability has been identified in the HP Support Assistant for versions prior to 9.44.18.0. The vulnerability could potentially allow a local attacker to escalate privileges via an arbitrary file write.
- CVE-2022-23455Jan 30, 2023risk 0.00cvss —epss 0.00
Potential security vulnerabilities have been identified in HP Support Assistant. These vulnerabilities include privilege escalation, compromise of integrity, allowed communication with untrusted clients, and unauthorized modification of files.
- CVE-2022-23454Jan 30, 2023risk 0.00cvss —epss 0.00
Potential security vulnerabilities have been identified in HP Support Assistant. These vulnerabilities include privilege escalation, compromise of integrity, allowed communication with untrusted clients, and unauthorized modification of files.
- CVE-2022-23453Jan 30, 2023risk 0.00cvss —epss 0.00
Potential security vulnerabilities have been identified in HP Support Assistant. These vulnerabilities include privilege escalation, compromise of integrity, allowed communication with untrusted clients, and unauthorized modification of files.
- CVE-2022-38395Nov 18, 2022risk 0.00cvss —epss 0.03
HP Support Assistant uses HP Performance Tune-up as a diagnostic tool. HP Support Assistant uses Fusion to launch HP Performance Tune-up. It is possible for an attacker to exploit the DLL hijacking vulnerability and elevate privileges when Fusion launches the HP Performance…
- CVE-2020-6921Feb 16, 2022risk 0.00cvss —epss 0.01
Potential security vulnerabilities including compromise of integrity, and allowed communication with untrusted clients has been identified in HP Support Assistant software.
- CVE-2020-6920Feb 16, 2022risk 0.00cvss —epss 0.01
Potential security vulnerabilities including compromise of integrity, and allowed communication with untrusted clients has been identified in HP Support Assistant software.
- CVE-2020-6922Feb 16, 2022risk 0.00cvss —epss 0.01
Potential security vulnerabilities including compromise of integrity, and allowed communication with untrusted clients has been identified in HP Support Assistant software.
- CVE-2020-6917Feb 16, 2022risk 0.00cvss —epss 0.01
Potential security vulnerabilities including compromise of integrity, and allowed communication with untrusted clients has been identified in HP Support Assistant software.
- CVE-2020-6919Feb 16, 2022risk 0.00cvss —epss 0.01
Potential security vulnerabilities including compromise of integrity, and allowed communication with untrusted clients has been identified in HP Support Assistant software.
- CVE-2020-6918Feb 16, 2022risk 0.00cvss —epss 0.01
Potential security vulnerabilities including compromise of integrity, and allowed communication with untrusted clients has been identified in HP Support Assistant software.
- CVE-2022-23456Jan 28, 2022risk 0.00cvss —epss 0.00
Potential arbitrary file deletion vulnerability has been identified in HP Support Assistant software.
- CVE-2019-6328Jun 25, 2019risk 0.00cvss —epss 0.01
HP Support Assistant 8.7.50 and earlier allows a user to gain system privilege and allows unauthorized modification of directories or files. Note: A different vulnerability than CVE-2019-6329.
- CVE-2018-5927Mar 27, 2019risk 0.00cvss —epss 0.00
HP Support Assistant before 8.7.50.3 allows an unauthorized person with local access to load arbitrary code.