HP System Event Utility allows denial of service and file tampering

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

5.2

HP System Event Utility allows denial of service and file tampering

CVE-2026-2915

Summary

An outdated version of HP System Event Utility may allow an attacker to crash the system or make unauthorized changes to files. This issue has been fixed in version 3.2.16, which is available for download. We recommend updating to the latest version to ensure system security.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software

Vendor	Product	Affected versions	Fix available
hp	system_event_utility	<= 3.2.16	–

Original title

HP System Event Utility might allow denial of service with elevated arbitrary file writes. This potential vulnerability was remediated with HP System Event Utility version 3.2.16.

Original description

HP System Event Utility might allow denial of service with elevated arbitrary file writes. This potential vulnerability was
remediated with HP System Event Utility version 3.2.16.

nvd CVSS4.0 5.2

Vulnerability type

CWE-276 Incorrect Default Permissions

CWE-732 Incorrect Permission Assignment for Critical Resource

https://support.hp.com/us-en/document/ish_14271963-14271996-16/hpsbgn04097

Published: 3 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026