Vulnerability Details : CVE-2021-3808
Potential security vulnerabilities have been identified in the BIOS (UEFI Firmware) for certain HP PC products, which might allow arbitrary code execution. HP is releasing firmware updates to mitigate these potential vulnerabilities.
Products affected by CVE-2021-3808
- cpe:2.3:o:hp:elite_slice_firmware:2.55:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elite_x2_1012_g2_firmware:1.41:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elite_x2_1013_g3_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elite_x2_g4_firmware:01.12.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_1040_g4_firmware:1.41:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_1050_g1_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_735_g5_firmware:01.20.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_735_g6_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_745_g5_firmware:01.20.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_745_g6_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_755_g5_firmware:01.20.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_830_g5_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_830_g6_firmware:01.12.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_836_g5_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_836_g6_firmware:01.12.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_840_g5_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_840_g6_firmware:01.12.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_846_g5_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_850_g5_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_850_g6_firmware:01.12.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_x360_1020_g2_firmware:1.41:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_x360_1030_g2_firmware:1.41:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_x360_1030_g3_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_x360_1030_g4_firmware:01.12.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_x360_1040_g5_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_x360_1040_g6_firmware:01.12.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_x360_830_g5_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_x360_830_g6_firmware:01.12.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:pro_x2_612_g2_firmware:1.41:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_430_g6_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_440_g6_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_445_g6_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_445r_g6_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_450_g6_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_455_g6_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_455r_g6_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_640_g5_firmware:01.12.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_650_g5_firmware:01.12.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:zbook_14u_g5_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:zbook_14u_g6_firmware:01.12.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:zbook_15_g5_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:zbook_15_g6_firmware:01.12.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:zbook_15u_g5_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:zbook_15u_g6_firmware:01.12.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:zbook_17_g5_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:zbook_17_g6_firmware:01.12.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:zbook_studio_g5_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:zbook_studio_x360_g5_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:zhan_66_pro_13_g2_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:zhan_66_pro_14_g2_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:zhan_66_pro_15_g2_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:zhan_x_13_g2_firmware:01.12.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elite_dragonfly_firmware:01.12.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:zbook_studio_g4_firmware:1.41:*:*:*:*:*:*:*
- cpe:2.3:o:hp:zbook_x2_g4_firmware:1.41:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_840r_g4_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_430_g5_firmware:01.20.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_440_g5_firmware:01.20.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_450_g5_firmware:01.20.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_470_g5_firmware:01.20.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_640_g4_firmware:01.20.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_650_g4_firmware:01.20.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_x360_440_g1_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:zhan_66_pro_g1_firmware:01.20.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:mp9_g4_retail_system_firmware:02.17.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_800_35w_g4_desktop_mini_pc_firmware:02.18.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_800_65w_g4_desktop_mini_pc_firmware:02.18.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_800_95w_g4_desktop_mini_pc_firmware:02.18.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_800_g4_small_form_factor_pc_firmware:02.17.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_800_g4_tower_pc_firmware:02.17.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_800_g5_desktop_mini_pc_firmware:02.11.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_800_g5_small_form_factor_pc_firmware:02.11.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_800_g5_tower_pc_firmware:02.11.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_880_g4_tower_pc_firmware:02.17.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_880_g5_tower_pc_firmware:02.11.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:eliteone_1000_g2_23.8-in_all-in-one_business_pc_firmware:02.18.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_400_g4_desktop_mini_pc_firmware:02.18.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_400_g5_desktop_mini_pc_firmware:02.11.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_400_g5_microtower_pc_firmware:02.17.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_400_g5_small_form_factor_pc_firmware:2.17:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_400_g6_microtower_pc_firmware:02.11.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_400_g6_small_form_factor_pc_firmware:02.11.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_480_g5_microtower_pc_firmware:02.17.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_480_g6_microtower_pc_firmware:02.11.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_600_g4_desktop_mini_pc_firmware:02.18.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_600_g4_microtower_pc_firmware:02.17.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_600_g4_small_form_factor_pc_firmware:02.18.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_600_g5_desktop_mini_pc_firmware:02.11.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_600_g5_microtower_pc_firmware:02.11.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_600_g5_small_form_factor_pc_firmware:02.11.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_680_g4_microtower_pc_firmware:02.17.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:proone_400_g4_20-inch_non-touch_all-in-one_business_pc_firmware:02.17.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:proone_400_g4_23.8-inch_non-touch_all-in-one_business_pc_firmware:02.17.00:*:*:*:*:*:*:*When used together with: HP » Proone 400 G4 23.8-inch Non-touch All-in-one Business Pc » Version: N/A
- cpe:2.3:o:hp:proone_400_g5_20-inch_all-in-one_business_pc_firmware:02.11.01:*:*:*:*:*:*:*
- cpe:2.3:o:hp:proone_400_g5_23.8-inch_all-in-one_business_pc_firmware:02.11.01:*:*:*:*:*:*:*
- cpe:2.3:o:hp:proone_440_g4_23.8-inch_non-touch_all-in-one_business_pc_firmware:02.17.00:*:*:*:*:*:*:*When used together with: HP » Proone 440 G4 23.8-inch Non-touch All-in-one Business Pc » Version: N/A
- cpe:2.3:o:hp:proone_440_g5_23.8-in_all-in-one_business_pc_firmware:02.11.01:*:*:*:*:*:*:*
- cpe:2.3:o:hp:proone_600_g4_21.5-inch_touch_all-in-one_business_pc_firmware:02.17.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:proone_600_g5_21.5-in_all-in-one_business_pc_firmware:02.11.01:*:*:*:*:*:*:*
- cpe:2.3:o:hp:engage_one_aio_system_firmware:02.40.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_800_35w_g3_desktop_mini_pc_firmware:2.4:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_800_65w_g3_desktop_mini_pc_firmware:2.4:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_480_g4_microtower_pc_firmware:2.4:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_600_g3_microtower_pc_firmware:2.4:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_680_g3_microtower_pc_firmware:2.4:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_820_g4_firmware:1.41:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_828_g4_firmware:1.41:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_840_g4_firmware:1.41:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_848_g4_firmware:1.41:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_850_g4_firmware:1.41:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_430_g4_firmware:1.41:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_440_g4_firmware:1.41:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_450_g4_firmware:1.41:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_470_g4_firmware:1.41:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_640_g3_firmware:1.41:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_650_g3_firmware:1.41:*:*:*:*:*:*:*
- cpe:2.3:o:hp:zbook_14u_g4_firmware:1.41:*:*:*:*:*:*:*
- cpe:2.3:o:hp:zbook_15_g4_firmware:1.41:*:*:*:*:*:*:*
- cpe:2.3:o:hp:zbook_15u_g4_firmware:1.41:*:*:*:*:*:*:*
- cpe:2.3:o:hp:zbook_17_g4_firmware:1.41:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_455_g5_firmware:01.20.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_645_g4_firmware:01.20.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_x360_11_g3_ee_firmware:01.17.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_x360_11_g4_ee_firmware:01.13.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elite_slice_g2_firmware:2.55:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_705_g4_workstation_firmware:02.17.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_800_g4_workstation_firmware:02.17.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:eliteone_800_g5_23.8-in_all-in-one_firmware:2.11.01:*:*:*:*:*:*:*
- cpe:2.3:o:hp:engage_flex_pro_retail_system_firmware:02.17.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:engage_flex_pro-c_retail_system_firmware:02.17.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:engage_go_10_mobile_system_firmware:01.08.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:engage_go_mobile_system_firmware:01.19.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_725_g4_firmware:1.4:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_745_g4_firmware:1.4:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitebook_755_g4_firmware:1.4:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_11_ee_g2_firmware:1.55:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_455_g4_firmware:1.4:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_645_g3_firmware:1.4:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_655_g3_firmware:1.4:*:*:*:*:*:*:*
- cpe:2.3:o:hp:probook_x360_11_g2_ee_firmware:1.43:*:*:*:*:*:*:*
- cpe:2.3:o:hp:hp_z1_all-in-one_g3_firmware:1.31:*:*:*:*:*:*:*
- cpe:2.3:o:hp:hp_z1_entry_tower_g5_firmware:02.11.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:hp_z2_mini_g3_firmware:1.83:*:*:*:*:*:*:*
- cpe:2.3:o:hp:hp_z2_mini_g4_firmware:01.08.01:*:*:*:*:*:*:*
- cpe:2.3:o:hp:hp_z2_mini_g5_firmware:01.04.02:*:*:*:*:*:*:*
- cpe:2.3:o:hp:hp_z2_small_form_factor_g4_firmware:01.08.01:*:*:*:*:*:*:*
- cpe:2.3:o:hp:hp_z2_small_form_factor_g5_firmware:01.04.02:*:*:*:*:*:*:*
- cpe:2.3:o:hp:hp_z2_tower_g4_firmware:01.08.01:*:*:*:*:*:*:*
- cpe:2.3:o:hp:hp_z2_tower_g5_firmware:01.04.02:*:*:*:*:*:*:*
- cpe:2.3:o:hp:hp_z238_microtower_firmware:1.83:*:*:*:*:*:*:*
- cpe:2.3:o:hp:hp_z240_small_form_factor_firmware:1.83:*:*:*:*:*:*:*
- cpe:2.3:o:hp:hp_z240_tower_firmware:1.83:*:*:*:*:*:*:*
- cpe:2.3:o:hp:hp_mt21_mobile_thin_client_firmware:01.21.01:*:*:*:*:*:*:*
- cpe:2.3:o:hp:hp_mt31_mobile_thin_client_firmware:01.21.01:*:*:*:*:*:*:*
- cpe:2.3:o:hp:hp_mt44_mobile_thin_client_firmware:01.21.01:*:*:*:*:*:*:*
- cpe:2.3:o:hp:hp_mt45_mobile_thin_client_firmware:01.21.01:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_705_g3_desktop_mini_pc_firmware:2.38:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_705_g3_microtower_pc_firmware:2.38:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_705_g3_small_form_factor_pc_firmware:2.38:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_705_g4_desktop_mini_pc_firmware:02.17.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_705_g4_microtower_pc_firmware:02.17.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_705_g4_small_form_factor_pc_firmware:02.12.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_705_g5_desktop_mini_pc_firmware:02.11.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_705_g5_small_form_factor_pc_firmware:02.11.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_800_g3_small_form_factor_pc_firmware:2.4:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_800_g3_tower_pc_firmware:2.4:*:*:*:*:*:*:*
- cpe:2.3:o:hp:elitedesk_880_g3_tower_pc_firmware:2.4:*:*:*:*:*:*:*
- cpe:2.3:o:hp:eliteone_1000_g1_23.8-in_all-in-one_business_pc_firmware:2.4:*:*:*:*:*:*:*
- cpe:2.3:o:hp:eliteone_800_g3_23.8_non-touch_all-in-one_business_pc_firmware:2.4:*:*:*:*:*:*:*
- cpe:2.3:o:hp:eliteone_800_g4_23.8-in_all-in-one_business_pc_firmware:02.18.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_400_g3_desktop_mini_pc_firmware:2.4:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_400_g4_microtower_pc_firmware:2.4:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_400_g4_small_form_factor_pc_firmware:2.4:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_405_g4_desktop_mini_pc_firmware:02.17.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_405_g4_small_form_factor_pc_firmware:02.12.00:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_600_g3_desktop_mini_pc_firmware:2.4:*:*:*:*:*:*:*
- cpe:2.3:o:hp:prodesk_600_g3_small_form_factor_pc_firmware:2.4:*:*:*:*:*:*:*
- cpe:2.3:o:hp:proone_400_g3_20-inch_non-touch_all-in-one_pc_firmware:2.4:*:*:*:*:*:*:*
- cpe:2.3:o:hp:proone_400_g3_20-inch_touch_all-in-one_pc_firmware:2.4:*:*:*:*:*:*:*
- cpe:2.3:o:hp:proone_480_g3_20-inch_non-touch_all-in_one_pc_firmware:2.4:*:*:*:*:*:*:*
- cpe:2.3:o:hp:proone_600_g3_21.5-inch_non-touch_all-in-one_pc_firmware:2.4:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2021-3808
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 13 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2021-3808
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.8
|
HIGH | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
1.8
|
5.9
|
NIST |
References for CVE-2021-3808
-
https://support.hp.com/us-en/document/ish_6184733-6184761-16/hpsbhf03788
HP PC BIOS - May 2022 Security Updates | HP® Customer SupportVendor Advisory
Jump to