CVE-2025-1697

HIGH

HP Touchpoint Analytics <4.2.2439 - Privilege Escalation

Title source: llm

Description

A potential security vulnerability has been identified in the HP Touchpoint Analytics Service for certain HP PC products with versions prior to 4.2.2439. This vulnerability could potentially allow a local attacker to escalate privileges. HP is providing software updates to mitigate this potential vulnerability.

References (1)

[Various Sources] https://support.hp.com/us-en/document/ish_12269975-12269997-16/hpsbgn04008

Scores

CVSS v3 7.8

EPSS 0.0009

EPSS Percentile 24.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-59

Status published

Products (1)

hp/touchpoint_analytics_service < 4.2.2439

Published Apr 18, 2025

Tracked Since Feb 18, 2026