CVE-2022-37018
8.4
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 2.5 / Impact: 5.9
Source: NVD
Description
A potential vulnerability has been identified in the system BIOS for certain HP PC products which may allow escalation of privileges and code execution. HP is releasing firmware updates to mitigate the potential vulnerability.
Affected (75)
Products: Hp: Z1 G3 Firmware, Z2 Mini G3 Firmware, Z238 Microtower Firmware, Z240 Sff Firmware, Z240 Tower Firmware, Engage One Aio System Firmware, Mp9 G2 Retail System Firmware, Rp9 G1 Retail System Firmware, Elite Slice Firmware, Elitedesk 800 35w G2 Desktop Mini Pc Firmware, Elitedesk 800 35w G3 Desktop Mini Pc Firmware, Elitedesk 800 65w G2 Desktop Mini Pc Firmware, Elitedesk 800 65w G3 Desktop Mini Pc Firmware, Elitedesk 800 G2 Sff Firmware, Eliteone 800 G2 Aio Firmware, Eliteone 800 G3 Firmware, Prodesk 400 G3 Dm Firmware, Prodesk 400 G4 Microtower Firmware, Prodesk 400 G4 Sff Firmware, Prodesk 480 G4 Microtower Pc Firmware, Prodesk 600 G2 Dm Firmware, Prodesk 600 G2 Microtower Pc Firmware, Prodesk 600 G2 Sff Firmware, Prodesk 600 G3 Desktop Mini Firmware, Prodesk 600 G3 Microtower Pc Firmware, Prodesk 600 G3 Sff Firmware, Prodesk 680 G2 Microtower Pc Firmware, Prodesk 680 G3 Microtower Pc Firmware, Proone 400 G2 Aio Firmware, Proone 400 G3 Aio Firmware, Proone 480 G3 Firmware, Proone 600 G2 Aio Firmware, Proone 600 G3 Firmware, Elite X2 1012 G1 Firmware, Elite X2 1012 G2 Firmware, Elitebook 1030 G1 Firmware, Elitebook 1040 G3 Firmware, Elitebook 1040 G4 Firmware, Elitebook 820 G3 Firmware, Elitebook 820 G4 Firmware, Elitebook 828 G3 Firmware, Elitebook 828 G4 Firmware, Elitebook 840 G3 Firmware, Elitebook 840 G4 Firmware, Elitebook 848 G3 Firmware, Elitebook 848 G4 Firmware, Elitebook 850 G3 Firmware, Elitebook 850 G4 Firmware, Elitebook Folio G1 Firmware, Elitebook X360 1020 G2 Firmware, Elitebook X360 1030 G2 Firmware, Probook 11 G2 Firmware, Pro X2 612 G2 Firmware, Probook 430 G4 Firmware, Probook 440 G3 Firmware, Probook 440 G4 Firmware, Probook 446 G3 Firmware, Probook 450 G4 Firmware, Probook 470 G3 Firmware, Probook 470 G4 Firmware, Probook 640 G2 Firmware, Probook 640 G3 Firmware, Probook 650 G2 Firmware, Probook 650 G3 Firmware, Probook X360 11 G2 Firmware, Zbook 14u G4 Firmware, Zbook 15 G3 Firmware, Zbook 15 G4 Firmware, Zbook 15u G3 Firmware, Zbook 15u G4 Firmware, Zbook 17 G3 Firmware, Zbook 17 G4 Firmware, Zbook Studio G3 Firmware, Zbook Studio G4 Firmware, Zbook Studio X2 G4 Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.33 |
| Running on/with | Platform Versions |
|---|---|
Hp Z1 G3 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.85 |
| Running on/with | Platform Versions |
|---|---|
Hp Z2 Mini G3 | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.85 |
| Running on/with | Platform Versions |
|---|---|
Hp Z238 Microtower | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.85 |
| Running on/with | Platform Versions |
|---|---|
Hp Z240 Sff | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.85 |
| Running on/with | Platform Versions |
|---|---|
Hp Z240 Tower | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Engage One Aio System | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.59 |
| Running on/with | Platform Versions |
|---|---|
Hp Mp9 G2 Retail System | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.59 |
| Running on/with | Platform Versions |
|---|---|
Hp Rp9 G1 Retail System | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.59 |
| Running on/with | Platform Versions |
|---|---|
Hp Elite Slice | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.59 |
| Running on/with | Platform Versions |
|---|---|
Hp Elitedesk 800 35w G2 Desktop Mini Pc | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Elitedesk 800 35w G3 Desktop Mini Pc | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.59 |
| Running on/with | Platform Versions |
|---|---|
Hp Elitedesk 800 65w G2 Desktop Mini Pc | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Elitedesk 800 65w G3 Desktop Mini Pc | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.59 |
| Running on/with | Platform Versions |
|---|---|
Hp Elitedesk 800 G2 Sff | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.59 |
| Running on/with | Platform Versions |
|---|---|
Hp Eliteone 800 G2 Aio | All versions |
Configuration P
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Eliteone 800 G3 | All versions |
Configuration Q
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Prodesk 400 G3 Dm | All versions |
Configuration R
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Prodesk 400 G4 Microtower | All versions |
Configuration S
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Prodesk 400 G4 Sff | All versions |
Configuration T
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Prodesk 480 G4 Microtower Pc | All versions |
Configuration U
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.59 |
| Running on/with | Platform Versions |
|---|---|
Hp Prodesk 600 G2 Dm | All versions |
Configuration V
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.59 |
| Running on/with | Platform Versions |
|---|---|
Hp Prodesk 600 G2 Microtower Pc | All versions |
Configuration W
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.59 |
| Running on/with | Platform Versions |
|---|---|
Hp Prodesk 600 G2 Sff | All versions |
Configuration X
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Prodesk 600 G3 Desktop Mini | All versions |
Configuration Y
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Prodesk 600 G3 Microtower Pc | All versions |
Configuration Z
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Prodesk 600 G3 Sff | All versions |
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.59 |
| Running on/with | Platform Versions |
|---|---|
Hp Prodesk 680 G2 Microtower Pc | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Prodesk 680 G3 Microtower Pc | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.59 |
| Running on/with | Platform Versions |
|---|---|
Hp Proone 400 G2 Aio | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Proone 400 G3 Aio | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Proone 480 G3 | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.59 |
| Running on/with | Platform Versions |
|---|---|
Hp Proone 600 G2 Aio | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Before 02.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Proone 600 G3 | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.58 |
| Running on/with | Platform Versions |
|---|---|
Hp Elite X2 1012 G1 | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Elite X2 1012 G2 | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.58 |
| Running on/with | Platform Versions |
|---|---|
Hp Elitebook 1030 G1 | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.58 |
| Running on/with | Platform Versions |
|---|---|
Hp Elitebook 1040 G3 | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Elitebook 1040 G4 | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.58 |
| Running on/with | Platform Versions |
|---|---|
Hp Elitebook 820 G3 | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Elitebook 820 G4 | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.58 |
| Running on/with | Platform Versions |
|---|---|
Hp Elitebook 828 G3 | All versions |
Configuration P
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Elitebook 828 G4 | All versions |
Configuration Q
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.58 |
| Running on/with | Platform Versions |
|---|---|
Hp Elitebook 840 G3 | All versions |
Configuration R
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Elitebook 840 G4 | All versions |
Configuration S
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.58 |
| Running on/with | Platform Versions |
|---|---|
Hp Elitebook 848 G3 | All versions |
Configuration T
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Elitebook 848 G4 | All versions |
Configuration U
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.58 |
| Running on/with | Platform Versions |
|---|---|
Hp Elitebook 850 G3 | All versions |
Configuration V
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Elitebook 850 G4 | All versions |
Configuration W
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.58 |
| Running on/with | Platform Versions |
|---|---|
Hp Elitebook Folio G1 | All versions |
Configuration X
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Elitebook X360 1020 G2 | All versions |
Configuration Y
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Elitebook X360 1030 G2 | All versions |
Configuration Z
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.58 |
| Running on/with | Platform Versions |
|---|---|
Hp Probook 11 G2 | All versions |
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Pro X2 612 G2 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Probook 430 G4 | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.58 |
| Running on/with | Platform Versions |
|---|---|
Hp Probook 440 G3 | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Probook 440 G4 | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.58 |
| Running on/with | Platform Versions |
|---|---|
Hp Probook 446 G3 | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Probook 450 G4 | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.58 |
| Running on/with | Platform Versions |
|---|---|
Hp Probook 470 G3 | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Probook 470 G4 | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.58 |
| Running on/with | Platform Versions |
|---|---|
Hp Probook 640 G2 | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Probook 640 G3 | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.58 |
| Running on/with | Platform Versions |
|---|---|
Hp Probook 650 G2 | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Probook 650 G3 | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.46 |
| Running on/with | Platform Versions |
|---|---|
Hp Probook X360 11 G2 | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Zbook 14u G4 | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.58 |
| Running on/with | Platform Versions |
|---|---|
Hp Zbook 15 G3 | All versions |
Configuration P
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Zbook 15 G4 | All versions |
Configuration Q
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.58 |
| Running on/with | Platform Versions |
|---|---|
Hp Zbook 15u G3 | All versions |
Configuration R
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Zbook 15u G4 | All versions |
Configuration S
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.58 |
| Running on/with | Platform Versions |
|---|---|
Hp Zbook 17 G3 | All versions |
Configuration T
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Zbook 17 G4 | All versions |
Configuration U
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.58 |
| Running on/with | Platform Versions |
|---|---|
Hp Zbook Studio G3 | All versions |
Configuration V
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Zbook Studio G4 | All versions |
Configuration W
| Vulnerable Software | Affected Versions |
|---|---|
| Before 01.44 |
| Running on/with | Platform Versions |
|---|---|
Hp Zbook Studio X2 G4 | All versions |
References (2)
Source: hp-security-alert@hp.com
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Timeline
No history available yet.