CVE-2025-43026 | THREATINT

Description

A potential security vulnerability has been identified in the HP Support Assistant for versions prior to 9.44.18.0. The vulnerability could potentially allow a local attacker to escalate privileges via an arbitrary file write.

PUBLISHED Reserved 2025-04-16 | Published 2025-06-05 | Updated 2026-02-26 | Assigner hp

HIGH: 7.1CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L

Problem types

CWE-281 Improper Preservation of Permissions

Product status

Default status

unaffected

See HP security bulletin reference for affected versions

affected

References

support.hp.com/...ument/ish_12617979-12618008-16/hpsbgn04022

cve.org (CVE-2025-43026)

nvd.nist.gov (CVE-2025-43026)

Download JSON