CVE-2026-5064: HP One Agent Software – Security Update
Potential security vulnerabilities have been identified in the HP One Agent for certain HP PC products, which might allow for escalation of privilege and/or denial of service. HP is releasing software updates to mitigate these potential vulnerabilities.
Metrics
- CVSS v4.0
- 8.5
- Severity
- HIGH
- Fixed in
- 1.3.214.7339
- Affected Products
- 1
HarborGuard Analysis
Synopsis
A local privilege escalation and denial-of-service vulnerability affects HP One Agent Software versions prior to 1.3.214.7339. The vulnerability is reachable only from the local host and requires a low-privilege account, meaning an attacker needs an existing foothold on the machine. Successful exploitation grants full read and write access to confidential data and the ability to crash or disrupt the affected service. A patched-image rebuild at version 1.3.214.7339 is available on HarborGuard for affected environments.
HarborGuard Coverage
Detection of CVE-2026-5064 is available across every HarborGuard environment: the CVE is ingested from upstream feeds within minutes of publication and matched against all customer images, including custom-built images that bundle HP One Agent. Any image carrying a vulnerable version of HP One Agent Software below 1.3.214.7339 is flagged automatically.
AvailableHarborGuard scores this CVE at CVSS 8.5 (High) and surfaces it with that weighting in each customer's vulnerability dashboard. Per-environment compliance policy rules can escalate routing priority further, directing the finding to the appropriate team inbox within each customer organization.
AvailableA patched-image rebuild at HP One Agent version 1.3.214.7339 becomes available on HarborGuard as soon as the fix is confirmed in upstream feeds. For customers with auto-remediation enabled, HarborGuard triggers a rebuild, runs a regression test suite against the updated image, and opens a pull request against affected workloads automatically.
AvailableExploit Conditions
- Network reachabilityNot required
The attacker needs an existing shell or process on the host; the vulnerability is not reachable over the network.
- AuthenticationRequired
Any low-privilege local account is sufficient; no administrative or elevated credentials are needed.
- Victim interactionNot required
No victim interaction is required; the attacker can exploit the vulnerability without any user action.
- Attack complexityDetail
Attack complexity is low, meaning the exploit is reliable and does not depend on race conditions or specific environmental factors.
Blast Radius
- Reads confidential files and data accessible on the host, including credentials or session material stored by the HP One Agent process.
- Modifies or overwrites files and system state at a privilege level above what the attacker's account normally permits.
- Crashes or disrupts the HP One Agent service, causing loss of management or monitoring functionality on the affected host.
How HarborGuard Handles This
Available on HarborGuard: detection of this vulnerability is active for any image containing HP One Agent Software below version 1.3.214.7339. Where a customer's compliance policy permits auto-remediation, HarborGuard will rebuild the image at the patched version 1.3.214.7339, run a regression test suite, and open a pull request against affected workloads. For high-severity issues, the median time from CVE publication to merged patch PR is around 90 minutes for environments with auto-remediation enabled. Customers who manage remediation manually will find the finding routed to their configured inbox with full CVSS detail and affected-image inventory, enabling them to prioritize and act on their own schedule.
Fix available
- HP Inc. / HP One Agent Software< 1.3.214.7339 (from 0)
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N