Lucene search

HP Product Security Response TeamHPSBHF03812

HistoryOct 19, 2022 - 12:00 a.m.

HP PC BIOS October 2022 PCR Measurement Update

2022-10-1900:00:00

HP Product Security Response Team

support.hp.com

bios

security vulnerability

update

october 2022

firmware

intel

softpaqs

potential vulnerabilities

affected platforms

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

0.0004 Low

EPSS

Percentile

9.1%

JSON

A potential security vulnerability has been identified in the system BIOS for certain HP PC products which may allow loss of integrity. HP is releasing firmware updates to mitigate the potential vulnerability.

Intel has released updates to mitigate the potential vulnerabilities. HP has identified affected platforms and corresponding SoftPaqs with minimum versions that mitigate the potential vulnerabilities. See the affected platforms listed below.

Affected configurations

Vulners

Node

hphp_elite_dragonflyRange<01.03.01

hphp_envy_x360_14_inch_2-in-1_laptop_pc_14-es1xxxRange<01.03.01

hphp_elite_dragonfly_g2Range<01.10.00

hphp_elite_dragonfly_maxRange<01.10.00

hphp_elite_x2_g8_tabletRange<01.10.00

hphp_envy_x360_14_inch_2-in-1_laptop_pc_14-es1xxxRange<01.03.01

hphp_14_inch_laptop_pc_14-ep1xxxRange<01.03.01

hphp_probook_630_g8Range<01.04.00

hphp_14_inch_laptop_pc_14-ep1xxxRange<01.04.00

hphp_14_inch_laptop_pc_14-ep1xxxRange<01.08.01

hphp_15.6_inch_laptop_pc_15-fd1xxxRange<01.04.00

hphp_15.6_inch_laptop_pc_15-fd1xxxRange<01.08.01

hphp_elitebook_830_g5Range<01.03.01

hphp_elitebook_830_g8Range<01.10.00

hphp_elitebook_835_g7Range<01.02.01

hphp_elitebook_835_g8Range<01.10.00

hphp_14_inch_laptop_pc_14-ep1xxxRange<01.03.01

hphp_elitebook_840_aero_g8Range<01.10.00

hphp_elitebook_840_g8Range<01.10.00

hphp_elitebook_845_g7Range<01.02.01

hphp_elitebook_845_g8Range<01.10.00

hphp_elitebook_850_g8Range<01.10.00

hphp_elitebook_855_g8Range<01.10.00

hphp_pavilion_plus_16_inch_laptop_pc_16-ab1xxxRange<01.03.01

hphp_pavilion_plus_16_inch_laptop_pc_16-ab1xxxRange<01.02.01

hphp_elitebook_x360_1030_g8Range<01.10.00

hphp_elitebook_x360_1040_g8Range<01.10.00

hphp_elitebook_x360_830_g8Range<01.10.00

hphp_pro_x360_fortis_11_inch_g10Range<01.03.00

hphp_probook_430_g8Range<01.10.00

hphp_probook_fortis_14_inch_g10Range<01.04.00

hphp_probook_440_g8Range<01.10.00

hphp_probook_445_g6Range<01.08.01

hphp_probook_445_g8Range<01.10.00

hphp_15.6_inch_laptop_pc_15-fd1xxxRange<01.04.00

hphp_probook_450_g8Range<01.10.00

hphp_probook_455_g4Range<01.08.01

hphp_probook_455_g8Range<01.10.00

hphp_probook_630_g8Range<01.10.00

hphp_probook_635_aero_g8Range<01.10.00

hphp_probook_640_g8Range<01.10.00

hphp_probook_650_g8Range<01.10.00

hphp_probook_fortis_14_inch_g10Range<01.03.00

hphp_probook_x360_11_g7_eeRange<01.10.00

hphp_probook_x360_435_g8Range<01.10.00

hphp_zbook_firefly_14_inch_g8_mobile_workstation_pcRange<01.10.00

hphp_zbook_firefly_14_inch_g8_mobile_workstation_pcRange<01.03.01

hphp_zbook_firefly_15.6_inch_g8_mobile_workstation_pcRange<01.10.00

hphp_zbook_firefly_16_inch_g10_mobile_workstation_pcRange<01.03.01

hphp_zbook_fury_15.6_inch_g8_mobile_workstation_pcRange<01.10.00

hphp_zbook_fury_16_g10_mobile_workstation_pcRange<01.03.02

hphp_zbook_fury_17.3_inch_g8_mobile_workstation_pcRange<01.10.00

hphp_zbook_firefly_15.6_inch_g8_mobile_workstation_pcRange<01.10.00

hphp_zbook_firefly_15.6_inch_g8_mobile_workstation_pcRange<01.03.00

hphp_zbook_studio_15.6_inch_g8_mobile_workstation_pcRange<01.10.00

hphp_zbook_studio_16_inch_g10_mobile_workstation_pcRange<01.03.01

hphp_zhan_66_pro_14_inch_g5Range<01.04.00

hphp_zhan_66_pro_14_g4Range<01.10.00

hphp_zhan_66_pro_14_inch_g5Range<01.08.01

hpelite_mini_600_g9_desktop_pcRange<02.05.00

hpelite_mini_800_g9_desktop_pcRange<02.05.00

hphp_prodesk_600_g2_desktop_mini_pcRange<02.05.01

hphp_elitedesk_800_g5_desktop_mini_pcRange<02.05.01

hphp_z1_g8_tower_desktop_pcRange<02.05.01

hphp_elitedesk_800_g4_tower_pcRange<02.05.01

hphp_elitedesk_880_g4_tower_pcRange<02.05.01

hphp_elitedesk_800_g8_desktop_mini_pcRange<02.09.01

hphp_elitedesk_800_g8_small_form_factor_pcRange<02.09.01

hphp_elitedesk_800_g8_tower_pcRange<02.09.01

hphp_elitedesk_805_g8_desktop_mini_pcRange<02.05.02

hphp_elitedesk_805_g8_small_form_factor_pcRange<02.05.02

hphp_elitedesk_880_g8_tower_pcRange<02.09.01

hphp_eliteone_800_g8_24_all-in-one_pcRange<02.09.01

hphp_eliteone_800_g8_27_all-in-one_pcRange<02.09.01

hphp_23.8_inch_all-in-one_desktop_pcRange<02.06.00

hphp_27_inch_all-in-one_desktop_pc_27-cr0xxxRange<02.06.00

hpmini_conferencing_pc_with_zoom_roomsRange<02.05.00

hphp_prodesk_400_g2_desktop_mini_pcRange<02.05.00

hphp_desktop_pro_microtower_pcRange<02.05.00

hphp_z1_g8_tower_desktop_pcRange<02.05.00

hphp_prodesk_405_g8_desktop_mini_pcRange<02.05.02

hphp_prodesk_405_g8_small_form_factor_pcRange<02.05.02

hphp_23.8_inch_all-in-one_desktop_pcRange<02.05.00

hphp_z1_g8_tower_desktop_pcRange<02.09.01

hphp_z1_g8_tower_desktop_pcRange<02.05.01

hphp_engage_go_10_mobile_systemRange<01.10.00

hphp_z2_mini_g4_workstationRange<01.04.00

hphp_z2_small_form_factor_g8_workstationRange<01.05.02

hphp_z2_small_form_factor_g4_workstationRange<01.04.00

hphp_z2_tower_g8_workstationRange<01.05.02

hphp_z2_tower_g4_workstationRange<01.04.00

hpradia_clientRange<01.05.00

hphp_zbook_firefly_15_g7_mobile_workstationRange<01.10.01

CPENameOperatorVersion
hp elite dragonfly 13.5 inch g3 notebook pclt01.03.01
hp dragonfly folio 13.5 inch g3 2-in-1 notebook pclt01.03.01
hp elite dragonfly g2lt01.10.00
hp elite dragonfly maxlt01.10.00
hp elite x2 g8 tabletlt01.10.00
hp elite x360 1040 14 inch g9 2-in-1 notebook pclt01.03.01
hp elite x360 830 13 inch g9 2-in-1 notebook pclt01.03.01
hp elitebook 1040 14 inch g9 notebook pclt01.03.01
hp elitebook 630 13 inch g9 notebook pclt01.04.00
hp elitebook 640 14 inch g9 notebook pclt01.04.00

Name	Operator	Version
hp elite dragonfly 13.5 inch g3 notebook pc	lt	01.03.01
hp dragonfly folio 13.5 inch g3 2-in-1 notebook pc	lt	01.03.01
hp elite dragonfly g2	lt	01.10.00
hp elite dragonfly max	lt	01.10.00
hp elite x2 g8 tablet	lt	01.10.00
hp elite x360 1040 14 inch g9 2-in-1 notebook pc	lt	01.03.01
hp elite x360 830 13 inch g9 2-in-1 notebook pc	lt	01.03.01
hp elitebook 1040 14 inch g9 notebook pc	lt	01.03.01
hp elitebook 630 13 inch g9 notebook pc	lt	01.04.00
hp elitebook 640 14 inch g9 notebook pc	lt	01.04.00

Rows per page:

1-10 of 1031

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

0.0004 Low

EPSS

Percentile

9.1%

JSON

Related for HPSBHF03812