bleepingcomputer[.]com/news/security/hp-fixes-severe-bug-in-pre-installed-support-assistant-tool/
neowin[.]net/news/beware-hp-support-assistant-found-vulnerable-to-dll-hijacking-privilege-escalation/
HP issued a security advisory alerting users about a newly discovered vulnerability in HP Support Assistant, a software tool that comes pre-installed on all HP laptops and desktop computers, including the Omen sub-brand.HP Support Assistant is used to troubleshoot issues, perform hardware diagnostic tests, dive deeper into technical specifications, and even check for BIOS and driver updates on HP devices.
The flaw, discovered by researchers at Secure D and reported to HP, is tracked as CVE-2022-38395 and has a "high" severity score of 8.2, as it enables attackers to elevate their privileges on vulnerable systems.
HP recommends that customers using version 9.x to update to the latest version of the Support Assistant via the Microsoft Store.Those using the older version 8.x won't receive a security update, so they are advised to move to the newer branch. To do that, open the software, go to the "About" section, and click "check for updates."
In April 2020, it was revealed that HP Support Assistant suffered from at least ten elevation of privilege and remote code execution vulnerabilities, some remaining unpatched since October 2012 and for a year after their disclosure to HP.Considering the above, if you don't need or use your computer vendor's bloatware, deleting these tools would remove all associated risks.