CVE-2025-1003

A potential vulnerability has been identified in HP Anyware Agent for Linux which might allow for authentication bypass which may result in escalation of privilege. HP is releasing a software update to mitigate this potential vulnerability.

CVSS

No CVSS.

References

Link	Resource
https://support.hp.com/us-en/document/ish_11920613-11920636-16

Configurations

No configuration.

History

15 Apr 2026, 00:35

Type	Values Removed	Values Added
Summary		(es) Se ha identificado una vulnerabilidad potencial en HP Anyware Agent para Linux que podría permitir la omisión de la autenticación, lo que puede dar lugar a una escalada de privilegios. HP está lanzando una actualización de software para mitigar esta vulnerabilidad potencial.

04 Feb 2025, 00:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-02-04 00:15

Updated : 2026-04-15 00:35

NVD link : CVE-2025-1003

Mitre link : CVE-2025-1003

CVE.ORG link : CVE-2025-1003

JSON object : View

Products Affected

No product.

CWE

CWE-273

Improper Check for Dropped Privileges

{"id": "CVE-2025-1003", "cveTags": [], "metrics": {"cvssMetricV40": [{"type": "Secondary", "source": "hp-security-alert@hp.com", "cvssData": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 8.5, "Automatable": "NOT_DEFINED", "attackVector": "LOCAL", "baseSeverity": "HIGH", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "integrityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "availabilityRequirement": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED"}}]}, "published": "2025-02-04T00:15:33.940", "references": [{"url": "https://support.hp.com/us-en/document/ish_11920613-11920636-16", "source": "hp-security-alert@hp.com"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Secondary", "source": "hp-security-alert@hp.com", "description": [{"lang": "en", "value": "CWE-273"}]}], "descriptions": [{"lang": "en", "value": "A potential vulnerability has been identified in HP Anyware Agent for Linux which might allow for authentication bypass which may result in escalation of privilege. HP is releasing a software update to mitigate this potential vulnerability."}, {"lang": "es", "value": "Se ha identificado una vulnerabilidad potencial en HP Anyware Agent para Linux que podr\u00eda permitir la omisi\u00f3n de la autenticaci\u00f3n, lo que puede dar lugar a una escalada de privilegios. HP est\u00e1 lanzando una actualizaci\u00f3n de software para mitigar esta vulnerabilidad potencial."}], "lastModified": "2026-04-15T00:35:42.020", "sourceIdentifier": "hp-security-alert@hp.com"}