Software Update

software_update

Vendor: Hp • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2015-5442 1Hp 1Software Update May 6, 2026 Sep 29, 2015 N/A· v4 N/A· v3 4.6 MEDIUM· v2 Unspecified vulnerability in HP Software Update before 5.005.002.002 allows local users to gain privileges via unknown vectors.
CVE-2008-2390 1Hp 1Software Update Apr 23, 2026 May 21, 2008 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Hpufunction.dll 4.0.0.1 in HP Software Update exposes the unsafe (1) ExecuteAsync and (2) Execute methods, which allows remote attackers to execute arbitrary code via an absolute pathname in the first argument.
CVE-2008-0712 1Hp 1Software Update Apr 23, 2026 Apr 25, 2008 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Unspecified vulnerability in the HP HPeDiag (aka eSupportDiagnostics) ActiveX control in hpediag.dll in HP Software Update 4.000.009.002 and earlier allows remote attackers to execute arbitrary code or obtain sensitive i...Show more Unspecified vulnerability in the HP HPeDiag (aka eSupportDiagnostics) ActiveX control in hpediag.dll in HP Software Update 4.000.009.002 and earlier allows remote attackers to execute arbitrary code or obtain sensitive information via unspecified vectors. NOTE: this might overlap CVE-2007-6513.Show less
CVE-2007-6506 1Hp 1Software Update Apr 23, 2026 Dec 20, 2007 N/A· v4 N/A· v3 9.3 HIGH· v2 The HPRulesEngine.ContentCollection.1 ActiveX Control in RulesEngine.dll for HP Software Update 4.000.005.007 and earlier, including 3.0.8.4, allows remote attackers to (1) overwrite and corrupt arbitrary files via argum...Show more The HPRulesEngine.ContentCollection.1 ActiveX Control in RulesEngine.dll for HP Software Update 4.000.005.007 and earlier, including 3.0.8.4, allows remote attackers to (1) overwrite and corrupt arbitrary files via arguments to the SaveToFile method, and possibly (2) access arbitrary files via the LoadDataFromFile method.Show less