CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-38395

HP Support Assistant uses HP Performance Tune-up as a diagnostic tool. HP Support Assistant uses Fusion to launch HP Performance Tune-up. It is possible for an attacker to exploit the DLL hijacking vulnerability and elevate privileges when Fusion launches the HP Performance Tune-up.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.041

EPSS Ranking 88.2%

CVSS Severity

CVSS v3 Score 7.8

References

https://support.hp.com/us-en/document/ish_6788123-6788147-16/hpsbhf03809
https://support.hp.com/us-en/document/ish_6788123-6788147-16/hpsbhf03809

Products affected by CVE-2022-38395

Hp » Fusion » Version: Any

cpe:2.3:a:hp:fusion:*
Hp » Support Assistant » Version: N/A

cpe:2.3:a:hp:support_assistant:-
Hp » Support Assistant » Version: 8.1.40.3

cpe:2.3:a:hp:support_assistant:8.1.40.3
Hp » Support Assistant » Version: 8.7.50

cpe:2.3:a:hp:support_assistant:8.7.50
Hp » Support Assistant » Version: 8.7.50.3

cpe:2.3:a:hp:support_assistant:8.7.50.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-38395

Products

Pricing

Contact Us