Certain HP software packages (SoftPaqs) are potentially vulnerable to arbitrary code execution when the SoftPaq configuration file has been modified after extraction. HP has released updated software packages (SoftPaqs).

Related CVEs

CVE-2024-28893

Key Information

GHSA ID

GHSA-989m-gr7j-mv6g

Published

May 1, 2024 6:30 PM

Last Modified

July 3, 2024 6:38 PM

CVSS Score

7.5 /10

Primary Ecosystem

Unknown

Primary Package

Unknown

GitHub Reviewed

✗ No

Dataset

Last updated: June 30, 2025 6:26 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.