Vulnerability Details : CVE-2023-5739
Certain versions of HP PC Hardware Diagnostics Windows are potentially vulnerable to elevation of privilege.
Vulnerability category: Gain privilege
Products affected by CVE-2023-5739
- cpe:2.3:a:hp:pc_hardware_diagnostics:*:*:*:*:*:windows:*:*
- cpe:2.3:o:hp:thunderbolt_dock_g2_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:a:hp:image_assistant:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2023-5739
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 7 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2023-5739
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.8
|
HIGH | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
1.8
|
5.9
|
134c704f-9b21-4f2e-91b3-4a467353bcc0 | 2024-09-12 |
7.8
|
HIGH | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
1.8
|
5.9
|
NIST |
CWE ids for CVE-2023-5739
-
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.Assigned by: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)
References for CVE-2023-5739
-
https://support.hp.com/us-en/document/ish_8128401-8128440-16
HP PC Hardware Diagnostics Windows, HP Image Assistant, and HP Thunderbolt Dock G2 Firmware – Potential Buffer Overflow, Elevation of Privilege | HP® Customer SupportPatch;Vendor Advisory
Jump to