Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2022-37018
HistoryDec 12, 2022 - 1:15 p.m.

CVE-2022-37018

2022-12-1213:15:12
[email protected]
web.nvd.nist.gov
5
hp
bios
firmware
vulnerability
privilege escalation
code execution

CVSS3

8.4

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

28.5%

JSON

A potential vulnerability has been identified in the system BIOS for certain HP PC products which may allow escalation of privileges and code execution. HP is releasing firmware updates to mitigate the potential vulnerability.

Affected configurations

Nvd
Node
hpz1_g3_firmwareRange<01.33
AND
hpz1_g3Match-
Node
hpz2_mini_g3_firmwareRange<01.85
AND
hpz2_mini_g3Match-
Node
hpz238_microtower_firmwareRange<01.85
AND
hpz238_microtowerMatch-
Node
hpz240_sff_firmwareRange<01.85
AND
hpz240_sffMatch-
Node
hpz240_tower_firmwareRange<01.85
AND
hpz240_towerMatch-
Node
hpengage_one_aio_system_firmwareRange<02.44
AND
hpengage_one_aio_systemMatch-
Node
hpmp9_g2_retail_system_firmwareRange<02.59
AND
hpmp9_g2_retail_systemMatch-
Node
hprp9_g1_retail_system_firmwareRange<02.59
AND
hprp9_g1_retail_systemMatch-
Node
hpelite_slice_firmwareRange<02.59
AND
hpelite_sliceMatch-
Node
hpelitedesk_800_35w_g2_desktop_mini_pc_firmwareRange<02.59
AND
hpelitedesk_800_35w_g2_desktop_mini_pcMatch-
Node
hpelitedesk_800_35w_g3_desktop_mini_pc_firmwareRange<02.44
AND
hpelitedesk_800_35w_g3_desktop_mini_pcMatch-
Node
hpelitedesk_800_65w_g2_desktop_mini_pc_firmwareRange<02.59
AND
hpelitedesk_800_65w_g2_desktop_mini_pcMatch-
Node
hpelitedesk_800_65w_g3_desktop_mini_pc_firmwareRange<02.44
AND
hpelitedesk_800_65w_g3_desktop_mini_pcMatch-
Node
hpelitedesk_800_g2_sff_firmwareRange<02.59
AND
hpelitedesk_800_g2_sffMatch-
Node
hpeliteone_800_g2_aio_firmwareRange<02.59
AND
hpeliteone_800_g2_aioMatch-
Node
hpeliteone_800_g3_firmwareRange<02.44
AND
hpeliteone_800_g3Match-
Node
hpprodesk_400_g3_dm_firmwareRange<02.44
AND
hpprodesk_400_g3_dmMatch-
Node
hpprodesk_400_g4_microtower_firmwareRange<02.44
AND
hpprodesk_400_g4_microtowerMatch-
Node
hpprodesk_400_g4_sff_firmwareRange<02.44
AND
hpprodesk_400_g4_sffMatch-
Node
hpprodesk_480_g4_microtower_pc_firmwareRange<02.44
AND
hpprodesk_480_g4_microtower_pcMatch-
Node
hpprodesk_600_g2_dm_firmwareRange<02.59
AND
hpprodesk_600_g2_dmMatch-
Node
hpprodesk_600_g2_microtower_pc_firmwareRange<02.59
AND
hpprodesk_600_g2_microtower_pcMatch-
Node
hpprodesk_600_g2_sff_firmwareRange<02.59
AND
hpprodesk_600_g2_sffMatch-
Node
hpprodesk_600_g3_desktop_mini_firmwareRange<02.44
AND
hpprodesk_600_g3_desktop_miniMatch-
Node
hpprodesk_600_g3_microtower_pcMatch-
AND
hpprodesk_600_g3_microtower_pc_firmwareRange<02.44
Node
hpprodesk_600_g3_sffMatch-
AND
hpprodesk_600_g3_sff_firmwareRange<02.44
Node
hpprodesk_680_g2_microtower_pcMatch-
AND
hpprodesk_680_g2_microtower_pc_firmwareRange<02.59
Node
hpprodesk_680_g3_microtower_pcMatch-
AND
hpprodesk_680_g3_microtower_pc_firmwareRange<02.44
Node
hpproone_400_g2_aioMatch-
AND
hpproone_400_g2_aio_firmwareRange<02.59
Node
hpproone_400_g3_aioMatch-
AND
hpproone_400_g3_aio_firmwareRange<02.44
Node
hpproone_480_g3_firmwareRange<02.44
AND
hpproone_480_g3Match-
Node
hpproone_600_g2_aio_firmwareRange<02.59
AND
hpproone_600_g2_aioMatch-
Node
hpproone_600_g3_firmwareRange<02.44
AND
hpproone_600_g3Match-
Node
hpelite_x2_1012_g1_firmwareRange<01.58
AND
hpelite_x2_1012_g1Match-
Node
hpelite_x2_1012_g2_firmwareRange<01.44
AND
hpelite_x2_1012_g2Match-
Node
hpelitebook_1030_g1_firmwareRange<01.58
AND
hpelitebook_1030_g1Match-
Node
hpelitebook_1040_g3_firmwareRange<01.58
AND
hpelitebook_1040_g3Match-
Node
hpelitebook_1040_g4_firmwareRange<01.44
AND
hpelitebook_1040_g4Match-
Node
hpelitebook_820_g3_firmwareRange<01.58
AND
hpelitebook_820_g3Match-
Node
hpelitebook_820_g4Match-
AND
hpelitebook_820_g4_firmwareRange<01.44
Node
hpelitebook_828_g3Match-
AND
hpelitebook_828_g3_firmwareRange<01.58
Node
hpelitebook_828_g4Match-
AND
hpelitebook_828_g4_firmwareRange<01.44
Node
hpelitebook_840_g3_firmwareRange<01.58
AND
hpelitebook_840_g3Match-
Node
hpelitebook_840_g4_firmwareRange<01.44
AND
hpelitebook_840_g4Match-
Node
hpelitebook_848_g3_firmwareRange<01.58
AND
hpelitebook_848_g3Match-
Node
hpelitebook_848_g4_firmwareRange<01.44
AND
hpelitebook_848_g4Match-
Node
hpelitebook_850_g3_firmwareRange<01.58
AND
hpelitebook_850_g3Match-
Node
hpelitebook_850_g4_firmwareRange<01.44
AND
hpelitebook_850_g4Match-
Node
hpelitebook_folio_g1_firmwareRange<01.58
AND
hpelitebook_folio_g1Match-
Node
hpelitebook_x360_1020_g2_firmwareRange<01.44
AND
hpelitebook_x360_1020_g2Match-
Node
hpelitebook_x360_1030_g2_firmwareRange<01.44
AND
hpelitebook_x360_1030_g2Match-
Node
hpprobook_11_g2_firmwareRange<01.58education
AND
hpprobook_11_g2Match-education
Node
hppro_x2_612_g2_firmwareRange<01.44
AND
hppro_x2_612_g2Match-
Node
hpprobook_430_g4_firmwareRange<01.44
AND
hpprobook_430_g4Match-
Node
hpprobook_440_g3_firmwareRange<01.58
AND
hpprobook_440_g3Match-
Node
hpprobook_440_g4_firmwareRange<01.44
AND
hpprobook_440_g4Match-
Node
hpprobook_446_g3_firmwareRange<01.58
AND
hpprobook_446_g3Match-
Node
hpprobook_450_g4_firmwareRange<01.44
AND
hpprobook_450_g4Match-
Node
hpprobook_470_g3_firmwareRange<01.58
AND
hpprobook_470_g3Match-
Node
hpprobook_470_g4_firmwareRange<01.44
AND
hpprobook_470_g4Match-
Node
hpprobook_640_g2_firmwareRange<01.58
AND
hpprobook_640_g2Match-
Node
hpprobook_640_g3_firmwareRange<01.44
AND
hpprobook_640_g3Match-
Node
hpprobook_650_g2_firmwareRange<01.58
AND
hpprobook_650_g2Match-
Node
hpprobook_650_g3_firmwareRange<01.44
AND
hpprobook_650_g3Match-
Node
hpprobook_x360_11_g2_firmwareRange<1.46education
AND
hpprobook_x360_11_g2Match-education
Node
hpzbook_14u_g4_firmwareRange<01.44
AND
hpzbook_14u_g4Match-
Node
hpzbook_15_g3_firmwareRange<01.58
AND
hpzbook_15_g3Match-
Node
hpzbook_15_g4_firmwareRange<01.44
AND
hpzbook_15_g4Match-
Node
hpzbook_15u_g3_firmwareRange<01.58
AND
hpzbook_15u_g3Match-
Node
hpzbook_15u_g4_firmwareRange<01.44
AND
hpzbook_15u_g4Match-
Node
hpzbook_17_g3_firmwareRange<01.58
AND
hpzbook_17_g3Match-
Node
hpzbook_17_g4_firmwareRange<01.44
AND
hpzbook_17_g4Match-
Node
hpzbook_studio_g3_firmwareRange<01.58
AND
hpzbook_studio_g3Match-
Node
hpzbook_studio_g4_firmwareRange<01.44
AND
hpzbook_studio_g4Match-
Node
hpzbook_studio_x2_g4_firmwareRange<01.44
AND
hpzbook_studio_x2_g4Match-
VendorProductVersionCPE
hpz1_g3_firmware*cpe:2.3:o:hp:z1_g3_firmware:*:*:*:*:*:*:*:*
hpz1_g3-cpe:2.3:h:hp:z1_g3:-:*:*:*:*:*:*:*
hpz2_mini_g3_firmware*cpe:2.3:o:hp:z2_mini_g3_firmware:*:*:*:*:*:*:*:*
hpz2_mini_g3-cpe:2.3:h:hp:z2_mini_g3:-:*:*:*:*:*:*:*
hpz238_microtower_firmware*cpe:2.3:o:hp:z238_microtower_firmware:*:*:*:*:*:*:*:*
hpz238_microtower-cpe:2.3:h:hp:z238_microtower:-:*:*:*:*:*:*:*
hpz240_sff_firmware*cpe:2.3:o:hp:z240_sff_firmware:*:*:*:*:*:*:*:*
hpz240_sff-cpe:2.3:h:hp:z240_sff:-:*:*:*:*:*:*:*
hpz240_tower_firmware*cpe:2.3:o:hp:z240_tower_firmware:*:*:*:*:*:*:*:*
hpz240_tower-cpe:2.3:h:hp:z240_tower:-:*:*:*:*:*:*:*
Rows per page:
1-10 of 1501

Related

cve 1
cvelist 1
prion 1
hp 1
cve
cve
CVE-2022-37018
2022-12-12 13:15:12
cvelist
cvelist
CVE-2022-37018
2022-11-21 21:02:37
prion
prion
Code injection
2022-12-12 13:15:00
hp
hp
HP PC BIOS November 2022 Security Update for Potential Stack Buffer Overflow
2022-11-10 00:00:00

CVSS3

8.4

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

28.5%

JSON
Related for NVD:CVE-2022-37018
cve1cvelist1prion1hp1