CVE-2025-11531 | THREATINT

Description

HP System Event Utility and Omen Gaming Hub might allow execution of certain files outside of their restricted paths. This potential vulnerability was remediated with HP System Event Utility version 3.2.12 and Omen Gaming Hub version 1101.2511.101.0.

PUBLISHED Reserved 2025-10-08 | Published 2025-12-09 | Updated 2025-12-09 | Assigner hp

MEDIUM: 4.8CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

Problem types

CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Product status

Default status

unknown

Any version before 3.2.12

affected

Default status

unaffected

Any version before 1101.2511.101.0

affected

References

support.hp.com/...ument/ish_13537533-13537555-16/hpsbgn04079

cve.org (CVE-2025-11531)

nvd.nist.gov (CVE-2025-11531)

Download JSON