CVE-2023-32673

Certain versions of HP PC Hardware Diagnostics Windows, HP Image Assistant, and HP Thunderbolt Dock G2 Firmware are potentially vulnerable to elevation of privilege.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
hpCNA
---
---
CVEADP
---
---
CISA-ADPADP
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 69%
VendorProductVersion
hpimage_assistant
𝑥
< 5.1.8
hppc_hardware_diagnostics
𝑥
< 2.2.0.0
hpthunderbolt_dock_g2_firmware
-
𝑥
= Vulnerable software versions
References
https://support.hp.com/us-en/document/ish_8128401-8128440-16/hspbhf03848
https://support.hp.com/us-en/document/ish_8128401-8128440-16/hspbhf03848