CVE-2022-23931
HIGHHP PC Products - Privilege Escalation, RCE, DoS, Info Disclosure
Title source: llmDescription
Potential vulnerabilities have been identified in the system BIOS of certain HP PC products which may allow Escalation of Privilege, Arbitrary Code Execution, Unauthorized Code Execution, Denial of Service, and Information Disclosure.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://support.hp.com/us-en/document/ish_5817864-5817896-16
Scores
CVSS v3
8.2
EPSS
0.0006
EPSS Percentile
19.2%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Details
Status
published
Products (1)
hp/pc_bios
< 02.07.10
Published
Mar 11, 2022
Tracked Since
Feb 18, 2026