CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
5.1%
Potential vulnerabilities have been identified in the system BIOS of certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure.
Vendor | Product | Version | CPE |
---|---|---|---|
hp | dragonfly_folio_g3_2-in-1_firmware | 01.01.03 | cpe:2.3:o:hp:dragonfly_folio_g3_2-in-1_firmware:01.01.03:*:*:*:*:*:*:* |
hp | dragonfly_folio_g3_2-in-1 | - | cpe:2.3:h:hp:dragonfly_folio_g3_2-in-1:-:*:*:*:*:*:*:* |
hp | elite_dragonfly_firmware | 01.21.01 | cpe:2.3:o:hp:elite_dragonfly_firmware:01.21.01:*:*:*:*:*:*:* |
hp | elite_dragonfly | - | cpe:2.3:h:hp:elite_dragonfly:-:*:*:*:*:*:*:* |
hp | elite_dragonfly_g3_firmware | 01.03.01 | cpe:2.3:o:hp:elite_dragonfly_g3_firmware:01.03.01:*:*:*:*:*:*:* |
hp | elite_dragonfly_g3 | - | cpe:2.3:h:hp:elite_dragonfly_g3:-:*:*:*:*:*:*:* |
hp | elite_dragonfly_g2 | - | cpe:2.3:h:hp:elite_dragonfly_g2:-:*:*:*:*:*:*:* |
hp | elite_dragonfly_g2_firmware | 01.10.00 | cpe:2.3:o:hp:elite_dragonfly_g2_firmware:01.10.00:*:*:*:*:*:*:* |
hp | elite_dragonfly_max | - | cpe:2.3:h:hp:elite_dragonfly_max:-:*:*:*:*:*:*:* |
hp | elite_dragonfly_max_firmware | 01.10.00 | cpe:2.3:o:hp:elite_dragonfly_max_firmware:01.10.00:*:*:*:*:*:*:* |