CVE-2024-24970

Published: Jul 19, 2024Modified: Mar 25, 2025

6.5

Vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H

Exploitability: 1.0 / Impact: 5.5

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

Potential vulnerabilities have been identified in the HP Display Control software component within the HP Application Enabling Software Driver which might allow escalation of privilege.

Related CWEs

CWE-269

Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

References (2)

https://support.hp.com/us-en/document/ish_10914875-10914901-16/hpsbhf03954

Source: hp-security-alert@hp.com

https://support.hp.com/us-en/document/ish_10914875-10914901-16/hpsbhf03954

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.