Description
Potential vulnerabilities have been identified in UEFI firmware (BIOS) for some PC products which may allow escalation of privilege and arbitrary code execution.
References (1)
Core 1
Core References
Patch, Vendor Advisory x_refsource_misc
https://support.hp.com/us-en/document/ish_5661066-5661090-16
Scores
CVSS v3
8.8
EPSS
0.0006
EPSS Percentile
18.8%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Details
Status
published
Products (50)
hp/260_g3_desktop_mini_pc_firmware
< 2.17.00
hp/elite_dragonfly_firmware
< 01.12.00
hp/elite_dragonfly_g2_firmware
< 01.08.00
hp/elite_dragonfly_max_firmware
< 01.08.00
hp/elite_x2_1013_g3_firmware
< 01.19.00
hp/elite_x2_g4_firmware
< 01.12.00
hp/elite_x2_g8_tablet_firmware
< 01.08.00
hp/elitebook_1050_g1_firmware
< 01.19.00
hp/elitebook_830_g5_firmware
< 01.19.00
hp/elitebook_830_g6_firmware
< 01.12.00
... and 40 more
Published
Feb 16, 2022
Tracked Since
Feb 18, 2026