Lucene search
K

617 matches found

Hewlett-Packard
Hewlett-Packard
added 2018/07/09 12:0 a.m.28 views

HPSBHF03587 rev. 1 - Information Disclosure Vulnerability in Storage Media in Systems with Intel® Optane™ Memory Module with Whole Disk Encryption

Potential Security Impact Some platforms configured with Whole Disk Encryption and an Intel® Optane™ memory module, may be at risk of data remaining unencrypted and potentially accessible under specific conditions. Source: HP, HP Product Security Response Team PSRT Reported by: Intel VULNERABILIT...

4.6CVSS0.7AI score0.00216EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2018/03/21 12:0 a.m.28 views

HPSBHF03581 rev. 4 - AMD Secure Processor and Promontory Chipset Exploits

Potential Security Impact Circumvention of platform security controls, unauthorized access to system memory, installation of difficult to detect malware. Source: CTS Reported By: CTS VULNERABILITY SUMMARY Vulnerability | Description | Impact ---|---|--- MASTERKEY | Attacker who already has...

9.3CVSS1AI score0.01811EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2025/06/03 12:0 a.m.27 views

HP ThinPro 8.1 SP7 Security Updates

Previous versions of HP ThinPro prior to HP ThinPro 8.1 SP7 could potentially contain security vulnerabilities. HP has released HP ThinPro 8.1 SP7, which includes updates to mitigate potential vulnerabilities. All of the identified vulnerabilities listed above were addressed and fixed as part of...

10CVSS7.5AI score0.38474EPSS
Exploits82
Hewlett-Packard
Hewlett-Packard
added 2024/06/24 12:0 a.m.27 views

AMD Client UEFI – Cross-Process Information Leak

AMD has informed HP of a potential security vulnerability identified in some AMD client processors, which might allow information disclosure. AMD released firmware updates to mitigate these vulnerabilities. AMD has released updates to mitigate the potential vulnerability. HP has identified affect...

5.5CVSS7AI score0.05794EPSS
Exploits1Affected Software87
Hewlett-Packard
Hewlett-Packard
added 2024/03/13 12:0 a.m.27 views

Intel 2024.1 IPU - Chipset Software March 2024 Security Update

Intel has informed HP of potential security vulnerabilities in the Intel® Converged Security Management Engine CSME installer and Intel® Local Manageability Service software which may allow escalation of privilege or information disclosure. Intel is releasing updates to mitigate these potential...

6.7CVSS7.6AI score0.00174EPSS
Exploits0Affected Software319
Hewlett-Packard
Hewlett-Packard
added 2024/01/09 12:0 a.m.27 views

UC Software – Unverified Password Change

A potential vulnerability was discovered in certain Poly devices. An attacker who can take over a web server session can also change the administrator password without knowledge of the current password due to an improper authentication check. HP recommends that customers disable the web server an...

6.5CVSS7.5AI score0.00463EPSS
Exploits1
Hewlett-Packard
Hewlett-Packard
added 2023/11/20 12:0 a.m.27 views

Intel Rapid Storage Technology Software November 2023 Security Update

Intel has informed HP of a potential security vulnerability in some Intel® Rapid Storage Technology software, which might allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential vulnerability...

7.8CVSS7.1AI score0.00177EPSS
Exploits0Affected Software85
Hewlett-Packard
Hewlett-Packard
added 2023/11/20 12:0 a.m.27 views

Intel® Virtual RAID on CPU (VROC) August 2023 Security Updates

Intel has informed HP of a potential security vulnerability identified in the Intel® Virtual RAID on CPU VROC software, which might allow escalation of privilege. Intel is releasing software updates to mitigate the potential vulnerability. Intel has released updates to mitigate the potential...

7.8CVSS7.2AI score0.00153EPSS
Exploits0Affected Software9
Hewlett-Packard
Hewlett-Packard
added 2020/11/06 12:0 a.m.27 views

HPSBHF03701 rev. 2 - Intel® Ethernet 700 Series Controller November 2020 Security Update

Potential Security Impact Escalation of Privilege, Denial of Service Source: HP, HP Product Security Response Team PSRT Reported by: Intel VULNERABILITY SUMMARY Intel has informed HP of potential security vulnerabilities identified in the Intel® Ethernet 700 Series Controllers which might allow...

6.7CVSS2AI score0.00371EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2018/12/06 12:0 a.m.27 views

HPSBGN03599 rev. 2 - Certificate Authentication Vulnerability in HP Remote Graphics Software

Potential Security Impact Information disclosure Source : HP, HP Product Security Response Team PSRT Reported by : Rowan Venables VULNERABILITY SUMMARY A potential vulnerability has been identified in HP Remote Graphics Software’s certificate authentication process. RESOLUTION HP has mitigated th...

5.9CVSS3AI score0.01172EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2018/07/10 12:0 a.m.27 views

HPSBHF03588 rev. 1 - Intel Q1 2018 Intel® Active Management Technology 9.x/10.x/11.x Security Review Cumulative Update and Intel® Management Engine 11.x Issue

Potential Security Impact Elevation of Privilege Source: HP, HP Product Security Response Team PSRT Reported by: Intel VULNERABILITY SUMMARY Intel has identified security vulnerabilities that could potentially place affected platforms at risk. The issues affect Intel® Active Management Technology...

7.5CVSS3.1AI score0.01384EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2018/01/24 12:0 a.m.27 views

HPSBGN03575 rev. 1 - BIOS Password Extraction Vulnerability on Certain HP Notebooks

Potential Security Impact The unencrypted password was able to be accessed by CMOS tools. Source: HP, HP Product Security Response Team PSRT Reported By: Bader Zaidan VULNERABILITY SUMMARY A BIOS password extraction vulnerability has been reported on certain consumer notebooks. The BIOS password...

4.9CVSS4.6AI score0.01065EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2013/12/05 12:0 a.m.27 views

HPSBPI02945 rev.2 - HP Officejet Pro 8500 (A909) All-in-One Printer, Cross-Site Scripting (XSS)

Potential Security Impact Cross-site scripting XSS VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP Officejet Pro 8500 A909 All-in-One Printer. The vulnerability could be exploited to allow cross-site scripting XSS. RESOLUTION HP has provided updated HP Officej...

4.3CVSS1.8AI score0.02534EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2012/10/31 12:0 a.m.27 views

HPSBPI02828 SSRT100778 rev.2 - HP LaserJet and Color LaserJet, Cross-Site Scripting (XSS)

Potential Security Impact Cross-site scripting XSS VULNERABILITY SUMMARY A potential security vulnerability has been identified with certain HP LaserJet and Color LaserJet printers. The vulnerability could be exploited to allow cross-site scripting XSS. RESOLUTION HP has provided firmware updates...

4.3CVSS5.4AI score0.01627EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2026/05/13 12:0 a.m.26 views

Intel NPU Driver May 2026 Security Update

Intel has informed HP of potential vulnerabilities identified in the Intel® NPU Drivers which might allow escalation of privilege or denial of service. Intel is releasing software updates to mitigate these potential vulnerabilities. Intel has released updates to mitigate the potential...

6.9CVSS5.8AI score0.00104EPSS
Exploits0Affected Software90
Hewlett-Packard
Hewlett-Packard
added 2025/05/13 12:0 a.m.26 views

AMD CPU Microcode Security Update

AMD has informed HP of a potential security vulnerability identified in the microcode patch loader for some AMD processors, which might allow arbitrary code execution and information disclosure. AMD is releasing firmware updates to mitigate these vulnerabilities. AMD has released updates to...

6.4CVSS7.5AI score0.00097EPSS
Exploits0Affected Software254
Hewlett-Packard
Hewlett-Packard
added 2025/03/03 12:0 a.m.26 views

HP ThinPro 8.1 SP6 Security Updates

Previous versions of HP ThinPro prior to HP ThinPro 8.1 SP6 could potentially contain security vulnerabilities. HP has released HP ThinPro 8.1 SP6, which includes updates to mitigate potential vulnerabilities. All of the identified vulnerabilities listed above were addressed and fixed as part of...

9.8CVSS7.6AI score0.76959EPSS
Exploits28
Hewlett-Packard
Hewlett-Packard
added 2025/02/06 12:0 a.m.26 views

Certain HP LaserJet Pro Printers – Potential Denial of Service

Certain HP LaserJet Pro printers may potentially experience a denial of service when a user sends a raw JPEG file to the printer via IPP Internet Printing Protocol. Update your printer firmware...

6.9CVSS6.7AI score0.00401EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2024/02/13 12:0 a.m.26 views

Intel Extreme Tuning Utility (XTU) February 2024 Security Update

Intel has informed HP of potential security vulnerabilities in some Intel® Extreme Tuning Utility XTU software, which might allow escalation of privilege. Intel is releasing software updates to mitigate these potential vulnerabilities. Intel has released updates to mitigate the potential...

7.8CVSS7.7AI score0.00192EPSS
Exploits0Affected Software68
Hewlett-Packard
Hewlett-Packard
added 2024/02/13 12:0 a.m.26 views

Intel Unite Software February 2024 Security Update

Intel has informed HP of a potential security vulnerability in some Intel® Unite® software, which might allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential vulnerabilities. HP has...

7.8CVSS7.5AI score0.00184EPSS
Exploits0Affected Software35
Hewlett-Packard
Hewlett-Packard
added 2023/12/11 12:0 a.m.26 views

Intel 2023.4 IPU – BIOS November 2023 Security Update

Intel has informed HP of potential security vulnerabilities in the BIOS firmware for some Intel® Processors, which might allow escalation of privilege or denial of service. Intel is releasing BIOS updates to mitigate these potential vulnerabilities. Intel has released updates to mitigate the...

8CVSS8AI score0.00403EPSS
Exploits0Affected Software706
Hewlett-Packard
Hewlett-Packard
added 2023/08/02 12:0 a.m.26 views

Certain HP and Samsung printer software - Potential elevation of privileges

Certain HP and Samsung Printer software packages may potentially be vulnerable to elevation of privilege due to Uncontrolled Search Path Element. Update the printer software...

7.3CVSS7AI score0.00188EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2023/06/22 12:0 a.m.26 views

Certain HP LaserJet Pro Print Products – Potential Buffer Overflow and/or Denial of Service

Certain HP LaserJet Pro print products are potentially vulnerable to Buffer Overflow and/or Denial of Service when using the backup & restore feature through the embedded web service on the device. Update the printer firmware...

8.8CVSS7AI score0.0043EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2022/11/08 12:0 a.m.26 views

Intel® PROSet/Wireless WiFi, Intel vPro® CSME WiFi, and Killer™ WiFi November 2022 Security Update

Intel has informed HP of a potential vulnerability identified in some Intel® PROSet/Wireless WiFi, Intel vPro® CSME WiFi, and Killer™ WiFi products, which might allow denial of service. Intel is releasing a firmware update to mitigate this potential vulnerability. Intel has released updates to...

6.5CVSS7.1AI score0.00407EPSS
Exploits0Affected Software130
Hewlett-Packard
Hewlett-Packard
added 2022/11/08 12:0 a.m.26 views

Intel® XMM™ 7560 Modem November 2022 Security Update

Intel has informed HP of potential security vulnerabilities in some Intel® XMM™ 7560 Modem software, which might allow escalation of privilege. Intel is releasing software updates to mitigate these potential vulnerabilities. Intel has released updates to mitigate the potential vulnerabilities. HP...

9.6CVSS1.3AI score0.00281EPSS
Exploits0Affected Software24
Hewlett-Packard
Hewlett-Packard
added 2021/11/01 12:0 a.m.26 views

Certain HP LaserJet, LaserJet Managed, PageWide, PageWide Managed printers - Potential buffer overflow

Certain HP LaserJet, HP LaserJet Managed, HP PageWide, and HP PageWide Managed products may be vulnerable to potential buffer overflow. Update your printer firmware...

9.8CVSS7.2AI score0.12135EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2021/03/15 12:0 a.m.26 views

HPSBGN03722 rev. 1 - HP Support Assistant Weak ACL and DLL Loading Vulnerability

Potential Security Impact Execution of arbitrary code. Source: HP, HP Product Security Response Team PSRT Reported by: Rémi ESCOURROU @remiescourrou VULNERABILITY SUMMARY A weak ACL may potentially allow an unauthorized person to load arbitrary code. RESOLUTION A patch was released on March 10,...

5CVSS1.5AI score
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2020/09/15 12:0 a.m.26 views

HPSBPI03686 rev. 1 - Certain HP Enterprise MFP products: Elevation of Privilege

Potential Security Impact Elevation of privilege Source: HP, HP Product Security Response Team PSRT Reported by: HP VULNERABILITY SUMMARY A potential security vulnerability has been identified for certain HP multifunction printers MFPs. The vulnerability may lead to elevation of privilege when...

7.8CVSS1.1AI score
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2020/08/04 12:0 a.m.26 views

HPSBHF03680 rev. 1 - Intel® PROSet/Wireless WiFi Software August 2020 Security Updates

Potential Security Impact Escalation of Privilege, Denial of Service Source: HP, HP Product Security Response Team PSRT Reported By: Intel VULNERABILITY SUMMARY Intel has informed HP of a potential security vulnerability in some Intel® PROSet/Wireless WiFi software which may allow escalation of...

6.3CVSS2AI score0.00289EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2019/03/21 12:0 a.m.26 views

HPSBHF03611 rev. 2 - NVIDIA GPU Display Driver Vulnerabilities

Potential Security Impact Denial of service, Escalation of privilege, Unauthorized code execution, or Information disclosure Source: HP, HP Product Security Response Team PSRT Reported By: NVIDIA VULNERABILITY SUMMARY HP has been notified of potential security vulnerabilities with the GPU Display...

8.8CVSS3AI score0.00555EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2018/01/04 12:0 a.m.26 views

HPSBHF03572 rev. 4 - Unsafe Opcodes Exposed in SPI

Potential Security Impact Denial of Service Source: Intel Reported By: Intel VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with how the SPI interface is configured on certain platforms. Specific SPI OpCodes may be left accessible and vulnerable to misuse. In the...

7.9CVSS2AI score0.00355EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2017/01/20 12:0 a.m.26 views

HPSBHF03553 rev 2 - HP ThinPro Escalation of Privilege via Command Line Shell

Potential Security Impact Local unauthorized escalation of privilege on an HP thin client device. VULNERABILITY SUMMARY A potential security vulnerability has been identified with the command line shell of the HP ThinPro operating system. The vulnerability could result in a local unauthorized...

7.8CVSS2.7AI score0.0051EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2013/02/26 12:0 a.m.26 views

HPSBPI02851 SSRT101078 rev.2 - Certain HP LaserJet Pro Printers, Unauthorized Access to Data

Potential Security Impact Unauthorized access to data VULNERABILITY SUMMARY A potential security vulnerability has been identified with certain HP LaserJet Pro printers. The vulnerability could be exploited remotely to gain unauthorized access to data. RESOLUTION HP has provided firmware updates...

8.8CVSS1.9AI score0.0246EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2026/05/06 12:0 a.m.25 views

Poly Clariti Manager – May 2026 Security Update

Multiple potential security vulnerabilities have been identified on Poly Clariti Manager, on-premises management platform. These vulnerabilities are related to Berkeley Internet Name Domain BIND, which is an open-source protocol. HP has released updates to mitigate the potential vulnerabilities. ...

8.6CVSS7.1AI score0.99995EPSS
Exploits2
Hewlett-Packard
Hewlett-Packard
added 2025/05/07 12:0 a.m.25 views

AMD SMM Vulnerabilities February 2025 Security Update

AMD has informed HP of potential vulnerabilities identified in some AMD client platform firmware components, which might allow arbitrary code execution. AMD is releasing firmware updates to mitigate these vulnerabilities. AMD has released updates to mitigate the potential vulnerabilities. HP has...

8.2CVSS8.6AI score0.00208EPSS
Exploits0Affected Software216
Hewlett-Packard
Hewlett-Packard
added 2024/05/14 12:0 a.m.25 views

Intel Arc™ & Iris® Xe Graphics Software May 2024 Security Update

Intel has informed HP of a potential security vulnerability in some Intel® Arc™ & Iris® Xe Graphics software which may allow escalation of privilege. Intel is releasing updates to mitigate the potential vulnerability. Intel has released updates to mitigate the potential vulnerability. HP has...

7.8CVSS7.4AI score0.00342EPSS
Exploits0Affected Software122
Hewlett-Packard
Hewlett-Packard
added 2024/01/09 12:0 a.m.25 views

UC Software - Improper Neutralization of Special Elements Used in an OS Command

A potential vulnerability was discovered in certain Poly voice products. A flaw in the neutralization of data passed in the input fields within the web UI could result in an authenticated command injection. HP has identified affected products and corresponding firmware minimum versions that...

8.3CVSS7.6AI score0.03315EPSS
Exploits1
Hewlett-Packard
Hewlett-Packard
added 2023/11/20 12:0 a.m.25 views

AMD Ryzen Master™ SDK August 2023 Security Update

AMD has informed HP of potential security vulnerabilities identified in the AMD® Ryzen Master™ SDK, which might allow arbitrary code execution, denial of service, or information disclosure. AMD has released software updates to mitigate the potential vulnerabilities. AMD has released updates to...

6.7CVSS7.5AI score0.0029EPSS
Exploits1Affected Software68
Hewlett-Packard
Hewlett-Packard
added 2023/10/04 12:0 a.m.25 views

Certain HP Enterprise LaserJet, LaserJet Managed printers - Potential denial of service, potential Cross Site Scripting (XSS)

Certain HP Enterprise LaserJet and HP LaserJet Managed Printers are potentially vulnerable to denial of service due to WS-Print request and potential injections of Cross Site Scripting via jQuery-UI. Update your printer firmware...

6.5CVSS6.5AI score0.44515EPSS
Exploits4
Hewlett-Packard
Hewlett-Packard
added 2023/09/21 12:0 a.m.25 views

AMD Client UEFI DXE Driver Memory Leaks September 2023 Security Update

AMD has informed HP of potential vulnerabilities identified in some AMD client platform firmware components, which might allow denial of service or information disclosure. AMD is releasing firmware updates to mitigate these vulnerabilities. AMD has released updates to mitigate the potential...

5.5CVSS7.3AI score0.00175EPSS
Exploits0Affected Software186
Hewlett-Packard
Hewlett-Packard
added 2023/08/08 12:0 a.m.25 views

Intel® Unite® Hub Software August 2023 Security Update

Intel has informed HP of a potential vulnerability identified in the Intel® Unite® Hub software, which may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential vulnerability. HP has...

7.8CVSS7AI score0.00131EPSS
Exploits0Affected Software43
Hewlett-Packard
Hewlett-Packard
added 2022/08/09 12:0 a.m.25 views

Intel 2022.2 IPU BIOS Security Updates

Intel has informed HP of a potential security vulnerability in some Intel® Processors, which might allow information disclosure. Intel is releasing firmware updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential vulnerability. HP has identified...

5.5CVSS6.8AI score0.00324EPSS
Exploits0Affected Software292
Hewlett-Packard
Hewlett-Packard
added 2016/02/25 12:0 a.m.25 views

HPSBHF03439 rev.2 - HP Commercial PCs with Sure Start, Local Denial of Service

Potential Security Impact Denial of Service DoS Source: Hewlett­Packard Company, HP Software Security Response Team VULNERABILITY SUMMARY HP has identified a potential security vulnerability with the Sure Start implementation on certain 2015 commercial platforms. This vulnerability could be...

6.1CVSS0.8AI score0.00419EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2011/03/01 12:0 a.m.25 views

HPSBPI02640 SSRT100410 rev.2 - HP MFP Digital Sending Software Running on Windows, Authentication Bypass

Potential Security Impact Authentication bypass VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP MFP Digital Sending Software running on Windows. The vulnerability could cause authentication to be disabled for managed devices. This could allow access to the...

4.1CVSS2.4AI score0.00582EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2009/08/11 12:0 a.m.25 views

HPSBPI02463 SSRT090061 rev.2 - HP LaserJet Printers, HP Color LaserJet Printers, Remote Cross Site Scripting (XSS)

Potential Security Impact Remote Cross Site Scripting XSS VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with certain HP LaserJet printers, HP Color LaserJet printers and HP Digital Senders. The vulnerabilities could be exploited remotely by Cross Site Scripting XSS...

4.3CVSS2.8AI score0.0223EPSS
Exploits10
Hewlett-Packard
Hewlett-Packard
added 2007/01/03 12:0 a.m.25 views

HPSBPI02185 SSRT071290 rev.4 - HP Jetdirect Running ftp, Remote Denial of Service (DoS)

Potential Security Impact Remote Denial of Service DoS VULNERABILITY SUMMARY A potential vulnerability has been identified with HP Jetdirect running ftp. The vulnerability could be exploited remotely to create a Denial of Service DoS. RESOLUTION This vulnerability can be resolved by upgrading the...

7.1CVSS2AI score0.02886EPSS
Exploits1
Hewlett-Packard
Hewlett-Packard
added 2026/05/13 12:0 a.m.24 views

Intel UEFI Reference Firmware March 2026 Security Update

Intel has informed HP of a potential security vulnerability in UEFI for some Intel Reference Platforms, which might allow escalation of privilege. Intel is releasing firmware updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential vulnerability. HP h...

5.9CVSS5.8AI score0.00137EPSS
Exploits0Affected Software5
Hewlett-Packard
Hewlett-Packard
added 2026/05/12 12:0 a.m.24 views

Intel UEFI Reference Firmware May 2026 Security Update

Intel has informed HP of a potential security vulnerability in UEFI for some Intel Reference Platforms which might allow information disclosure. Intel is releasing firmware updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential vulnerability. HP has...

5.6CVSS5.8AI score0.00095EPSS
Exploits0Affected Software5
Hewlett-Packard
Hewlett-Packard
added 2024/01/09 12:0 a.m.24 views

UC Software - Hidden Functionality

A potential vulnerability was discovered in certain Trio devices. An attacker can enable a hidden configuration with knowledge of the administrator password, physical access to the device, and the ability to bypass the authentication process of the hidden configuration to gain a shell with elevat...

6.6CVSS7.5AI score0.00263EPSS
Exploits1
Hewlett-Packard
Hewlett-Packard
added 2024/01/08 12:0 a.m.24 views

UC Software - Use of Insufficiently Random Values

A potential vulnerability was discovered in certain Poly devices. A potential flaw allows an attacker to predict a session and piggyback onto an active administrator session of the web server. The potential vulnerability is dependent on the administrator maintaining an active session. HP has...

5.9CVSS7.1AI score0.0092EPSS
Exploits2
Total number of security vulnerabilities617