CVE-2023-32673

EUVD-2023-36915
Certain versions of HP PC Hardware Diagnostics Windows, HP Image Assistant, and HP Thunderbolt Dock G2 Firmware are potentially vulnerable to elevation of privilege.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA-ADPADP
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 69%
Affected Products (NVD)
VendorProductVersion
hpimage_assistant
𝑥
< 5.1.8
hppc_hardware_diagnostics
𝑥
< 2.2.0.0
hpthunderbolt_dock_g2_firmware
-
𝑥
= Vulnerable software versions
References
https://support.hp.com/us-en/document/ish_8128401-8128440-16/hspbhf03848
https://support.hp.com/us-en/document/ish_8128401-8128440-16/hspbhf03848