CVE-2025-10578
HIGH WAF: Low
CVSS 7.8
Published: 2025-10-01
CWE-269
A potential security vulnerability has been identified in the HP Support Assistant for versions prior to 9.47.41.0. The vulnerability could potentially allow a local attacker to escalate privileges via an arbitrary file write.
WAF Coverage Analysis
Improper Privilege Management
Low WAF Coverage
OWASP: A01:2021 Broken Access Control
Affected Software
| Vendor | Product | Version |
|---|---|---|
| hp | support_assistant | up to 9.47.41.0 |
References
- support.hp.com (Vendor Advisory)