The vulnerability of the System Management Mode (SMM) implementation in HP notebook BIOS microprogramming systems allows a hacker to execute arbitrary code or cause a service failure.

🗓️ 24 Aug 2022 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

HP notebook BIOS SMM vulnerability allows arbitrary code execution or system failure via shared resource synchronization errors.

Reporter	Title	Published	Views	Family All 11
CNNVD	HP PC 安全漏洞	14 Jun 202300:00	–	cnnvd
CVE	CVE-2022-31642	14 Jun 202316:32	–	cve
Cvelist	CVE-2022-31642	14 Jun 202316:32	–	cvelist
EUVD	EUVD-2022-53284	3 Oct 202520:07	–	euvd
Hewlett-Packard	HP PC BIOS August 2022 Security Updates for Potential SMM and TOCTOU Vulnerabilities	9 Aug 202200:00	–	hp
NVD	CVE-2022-31642	14 Jun 202317:15	–	nvd
OSV	CVE-2022-31642	14 Jun 202317:15	–	osv
Prion	Information disclosure	14 Jun 202317:15	–	prion
Positive Technologies	PT-2022-4404 · Hewlett Packard · Hp Laptop Bios	9 Aug 202200:00	–	ptsecurity
RedhatCVE	CVE-2022-31642	9 Jan 202610:47	–	redhatcve

Vulners

Node

hp hp_elite_dragonfly_g2Range<01.10.00

hp hp_elite_dragonfly_maxRange<01.10.00

hp hp_elite_x2_g8_tabletRange<01.10.00

hp hp_elitebook_830_g7Range<01.10.00

hp hp_elitebook_830_g8Range<01.10.00

hp hp_elitebook_835_g7Range<01.10.00

hp hp_elitebook_835_g8Range<01.10.00

hp hp_elitebook_840_aero_g8Range<01.10.00

hp hp_elitebook_840_g7Range<01.10.00

hp hp_elitebook_840_g8Range<01.10.00

hp hp_elitebook_845_g7Range<01.10.00

hp hp_elitebook_845_g8Range<01.10.00

hp hp_elitebook_850_g7Range<01.10.00

hp hp_elitebook_850_g8Range<01.10.00

hp hp_elitebook_855_g7Range<01.10.00

hp hp_elitebook_855_g8Range<01.10.00

hp hp_elitebook_x360_1030_g7Range<01.10.00

hp hp_elitebook_x360_1030_g8Range<01.10.00

hp hp_elitebook_x360_1040_g7Range<01.10.00

hp hp_elitebook_x360_1040_g8Range<01.10.00

hp hp_elitebook_x360_830_g7Range<01.10.00

hp hp_elitebook_x360_830_g8Range<01.10.00

hp hp_probook_430_g8Range<01.10.00

hp hp_probook_440_g8Range<01.10.00

hp hp_probook_445_g8Range<01.10.00

hp hp_probook_450_g8Range<01.10.00

hp hp_probook_630_g8Range<01.10.00

hp hp_probook_635_aero_g8Range<01.10.00

hp hp_probook_640_g7Range<01.10.00

hp hp_probook_640_g8Range<01.10.00

hp hp_probook_650_g7Range<01.10.00

hp hp_probook_650_g8Range<01.10.00

hp hp_probook_x360_11_g7_eeRange<01.10.00

hp hp_probook_x360_435_g8_notebook_pcRange<01.10.00

hp hp_zbook_create_g7Range<01.10.00

hp hp_zbook_firefly_14_g7Range<01.10.00

hp hp_zbook_firefly_14_inch_g8_mobile_workstation_pcRange<01.10.00

hp hp_zbook_firefly_15_g7Range<01.10.00

hp hp_zbook_firefly_15.6_inch_g8_mobile_workstation_pcRange<01.10.00

hp hp_zbook_fury_15_g7Range<01.10.00

hp hp_zbook_fury_15.6_inch_g8_mobile_workstation_pcRange<01.10.00

hp hp_zbook_fury_17_g7Range<01.10.00

hp hp_zbook_fury_17.3_inch_g8_mobile_workstation_pcRange<01.10.00

hp hp_zbook_power_15.6_inch_g8_mobile_workstation_pcRange<01.10.00

hp hp_zbook_power_g7Range<01.10.00

hp hp_zbook_studio_15.6_inch_g8_mobile_workstation_pcRange<01.10.00

hp hp_zbook_studio_g7Range<01.10.00

hp hp_zhan_66_pro_14_g4_notebook_pcRange<01.10.00

hp hp_zhan_66_pro_a_14_g4_notebook_pcRange<01.10.00

Source	Link
csoonline	www.csoonline.com/article/3669876/new-exploits-can-bypass-secure-boot-and-modern-uefi-security-protections.html
support	www.support.hp.com/us-en/document/ish_6662920-6662944-16/hpsbhf03805
web	www.web.nvd.nist.gov/view/vuln/detail

24 Aug 2022 00:00Current

7.5High risk

Vulners AI Score7.5

CVSS 26.2

CVSS 37.8

EPSS0.00138