A potential security vulnerability has been identified in the HP Support Assistant for versions prior to 9.47.41.0. The vulnerability could potentially allow a local attacker to escalate privileges via an arbitrary file write.
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.