Lucene search

HP Product Security Response TeamHPSBHF03893

HistoryDec 07, 2023 - 12:00 a.m.

AMD SMM Supervisor November 2023 Security Update

2023-12-0700:00:00

HP Product Security Response Team

support.hp.com

amd

smm supervisor

security vulnerability

arbitrary code execution

firmware updates

affected platforms

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.8 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

49.0%

JSON

AMD has informed HP of a potential security vulnerability identified in some AMD processors which might allow arbitrary code execution. AMD is releasing firmware updates to mitigate these vulnerabilities.

AMD has released updates to mitigate the potential vulnerability. HP has identified affected platforms and corresponding SoftPaqs with minimum versions that mitigate the potential vulnerability. See the affected platforms listed below.

Affected configurations

Vulners

Node

hphp_elitebook_835_g7Range<01.08.00

hphp_elitebook_835_g8Range<01.15.00

hphp_elitebook_845_g7Range<01.08.00

hphp_elitebook_845_g8Range<01.15.00

hphp_elitebook_855_g8Range<01.15.00

hphp_pavilion_plus_16_inch_laptop_pc_16-ab1xxxRange<01.08.00

hphp_probook_445_g8Range<01.15.00

hphp_probook_455_g8Range<01.15.00

hphp_probook_635_aero_g8Range<01.15.00

hphp_probook_x360_435_g8Range<01.15.00

hphp_zhan_66_pro_14_g4Range<01.15.00

hphp_elitedesk_805_g8_desktop_mini_pcRange<02.10.00

hphp_elitedesk_805_g8_small_form_factor_pcRange<02.10.00

hphp_prodesk_405_g8_desktop_mini_pcRange<02.10.00

hphp_prodesk_405_g8_small_form_factor_pcRange<02.10.00

hphp_14-em0xxxRange<F.08

hphp_14-fq2xxx\,_14z-fq200Range<F.17

hphp_14-hr0xxxRange<F.08

hphp_14s-fq2xxxRange<F.17

hphp_14s-fr2xxxRange<F.17

hphp_14s-fy2xxxRange<F.17

hphp_15-ef3xxx\,_15z-ef300Range<F.17

hphp_15s-eq3xxxRange<F.17

hphp_15s-er3xxxRange<F.17

hphp_15s-ey3xxxRange<F.17

hphp_17-cp1xxx\,_17z-cp100Range<F.12

hphp_17-cp3xxxRange<F.04

hphp_envy_x360_13-ay1xxx\,_13z-ay100Range<F.09

hphp_envy_x360_15-eu0xxx\,_15z-eu000Range<F.14

hphp_envy_x360_15-eu1xxxRange<F.07

hphp_envy_x360_15-ew0xxx\,_15t-ew000Range<F.15

hphp_envy_x360_15-ey1xxxRange<F.05

hphp_envy_x360_15-fh0xxxRange<F.06

hphp_envy_x360_15m-eu0xxxRange<F.14

hphp_pavilion_14-ec1xxx\,_14z-ec100Range<F.08

hphp_pavilion_15-eh2xxx\,_15z-eh200Range<F.08

hphp_pavilion_15-eh3xxxRange<F.04

hphp_pavilion_aero_13-be1xxx\,_13z-be100Range<F.10

hphp_pavilion_aero_13-be2xxxRange<F.13

hphp_pavilion_15-cw1xxx\,_15z-cw100Range<F.20

hphp_pavilion_15-cw1xxx\,_15z-cw100Range<F.26

hphp_pavilion_plus_14-ey0xxxRange<F.05

hpomen_gaming_hubRange<F.24

hpvictus_by_hp_16-d0xxxRange<F.22

hpomen_gaming_hubRange<F.19

hpomen_gaming_hubRange<F.18

hpvictus_by_hp_15-fb1xxxRange<F.04

hpvictus_by_hp_16-e0xxxRange<F.19

hpvictus_by_hp_16-e1xxx\,_16z-e100Range<F.20

hphp_245_g10Range<F.08

hphp_245_pcRange<F.12

hphp_255_g8_pcRange<F.13

hphp_zhan_66_pro_g6Range<F.05

hphp_zhan_99_mobile_workstation_g4Range<F.10

hphp_envy_te01-0xxxRange<F.47

hphp_m01-d0xxxRange<F.47

hphp_m01-f0xxxRange<F.47

hphp_pavilion_tp01-0xxxRange<F.47

hphp_desktop_190-0xxxRange<F.28

hphp_envy_desktop_te01-1xxxRange<F.14

hpomen_gaming_hubRange<F.17

hpomen_gaming_hubRange<F.28

CPENameOperatorVersion
hp elitebook 835 13 inch g9 notebook pclt01.08.00
hp elitebook 835 g8lt01.15.00
hp elitebook 845 14 inch g9 notebook pclt01.08.00
hp elitebook 845 g8lt01.15.00
hp elitebook 855 g8lt01.15.00
hp elitebook 865 16 inch g9 notebook pclt01.08.00
hp probook 445 g8lt01.15.00
hp probook 455 g8lt01.15.00
hp probook 635 aero g8lt01.15.00
hp probook x360 435 g8 notebook pclt01.15.00

Name	Operator	Version
hp elitebook 835 13 inch g9 notebook pc	lt	01.08.00
hp elitebook 835 g8	lt	01.15.00
hp elitebook 845 14 inch g9 notebook pc	lt	01.08.00
hp elitebook 845 g8	lt	01.15.00
hp elitebook 855 g8	lt	01.15.00
hp elitebook 865 16 inch g9 notebook pc	lt	01.08.00
hp probook 445 g8	lt	01.15.00
hp probook 455 g8	lt	01.15.00
hp probook 635 aero g8	lt	01.15.00
hp probook x360 435 g8 notebook pc	lt	01.15.00

Rows per page:

1-10 of 651

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.8 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

49.0%

JSON

Related for HPSBHF03893