CVE-2022-3990

Published: Feb 1, 2023Modified: Mar 28, 2025

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

HPSFViewer might allow Escalation of Privilege. This potential vulnerability was remediated on July 29th, 2022. Customers who opted for automatic updates should have already received the remediation.

Affected (1)

Products: Hp: Hpsfviewer

1 product

Hpsfviewer

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Hp Hpsfviewer	Before 8.6.3.1

Related CWEs

CWE-269

Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

References (2)

https://support.hp.com/us-en/document/ish_7256634-7256658-16

Source: hp-security-alert@hp.com

Vendor Advisory

https://support.hp.com/us-en/document/ish_7256634-7256658-16

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.