CVE-2022-23953 : Potential vulnerabilities have been identified in the BIOS for some HP PC produc

Potential vulnerabilities have been identified in the BIOS for some HP PC products which may allow denial of service.

Published 2022-03-02 21:15:08

Updated 2022-03-10 13:35:53

Source HP Inc.

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2022-23953

HP » Probook 440 G8 Firmware
Versions before (<) 01.08.11
cpe:2.3:o:hp:probook_440_g8_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: HP » Probook 440 G8 » Version: N/A
HP » Prodesk 405 G6 Small Form Factor Firmware » S15 Edition
Versions before (<) 02.07.10
cpe:2.3:o:hp:prodesk_405_g6_small_form_factor_firmware:*:*:*:*:s15:*:*:*
Matching versions
When used together with: HP » Prodesk 405 G6 Small Form Factor » Version: N/A
HP » Prodesk 405 G6 Small Form Factor Firmware » S05 Edition
Versions before (<) 02.07.10
cpe:2.3:o:hp:prodesk_405_g6_small_form_factor_firmware:*:*:*:*:s05:*:*:*
Matching versions
When used together with: HP » Prodesk 405 G6 Small Form Factor » Version: N/A

EPSS FAQ

0.58%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 66 %

Percentile, the proportion of vulnerabilities that are scored at or less

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.9	MEDIUM	AV:L/AC:L/Au:N/C:N/I:N/A:C	3.9	6.9	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Complete
5.5	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H	1.8	3.6	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

Jump to