HP Card Readers (B Models) – Potential Information Disclosure

The following HP Card Readers B Models X3D03B & Y7C05B are potentially vulnerable to information disclosure, allowing prior user identity to be inherited under certain conditions —e.g., when an NFC device such as a smartphone/smartwatches is in proximity during a card swipe event. HP has determin...

NVIDIA GPU Display Driver October 2025 Security Update

NVIDIA has informed HP of potential security vulnerabilities identified in the NVIDIA® GPU Display Driver for Windows, which might allow denial of service, escalation of privileges, data tampering, code execution, or information disclosure. NVIDIA has released updates to mitigate these...

Intel Xeon Processor Firmware August 2025 Security Update

Intel has informed HP of potential security vulnerabilities in the Intel® Xeon® Processors, which might allow escalation of privilege or denial of service. Intel is releasing firmware updates to mitigate these potential vulnerabilities. Intel has released updates to mitigate the potential...

HP ThinPro 8.1 SP8 Security Updates

Previous versions of HP ThinPro prior to HP ThinPro 8.1 SP8 could potentially contain security vulnerabilities. HP has released HP ThinPro 8.1 SP8, which includes updates to mitigate potential vulnerabilities. All of the identified vulnerabilities listed above were addressed and fixed as part of...

Insyde UEFI Digital Certificate Injection

A potential security vulnerability has been identified in certain HP PC products using Insyde BIOS InsydeH20 UEFI Firmware, which might allow escalation of privilege, arbitrary code execution, denial of service, and/or information disclosure. Insyde is releasing mitigation for the potential...

AMD TPM Reference Implementation June 2025 Security Update

AMD has informed HP of a potential security vulnerability identified in AMD Firmware TPM fTPM, which might allow information disclosure and/or denial of service. AMD has released Platform Initialization PI firmware to mitigate the vulnerability. AMD has released updates to mitigate the potential...

Insyde BIOS Buffer Overflow in certain HP ARM-Based PCs

A potential security vulnerability has been identified in certain ARM-based HP PC products using Insyde BIOS InsydeH20 UEFI Firmware, which might allow arbitrary code execution. Insyde has released updates to mitigate the potential vulnerabilities. HP has identified affected platforms and...

AMD AIM-T Manageability Software Security Update

AMD has informed HP of potential vulnerabilities in the AMD Integrated Management Technology AIM-T software, which might allow arbitrary code execution. AMD has released software updates to mitigate these vulnerabilities. AMD has released updates to mitigate this potential vulnerabilities. HP has...

Intel Chipset Firmware August 2025 Security Update

Intel has informed HP of potential security vulnerabilities in some Intel® Converged Security and Manageability Engine CSME, Intel® Active Management Technology AMT, and Intel® Standard Manageability, which might allow information disclosure or escalation of privilege. Intel is releasing firmware...

Sound Research SECOMNService Escalation of Privilege

Potential vulnerabilities have been identified in the audio package for certain HP PC products using the Sound Research SECOMN64 driver, which might allow escalation of privilege. HP is releasing updated audio packages to mitigate the potential vulnerabilities The Sound Research Effects Driver...

AMD Secure Processor Security Update

AMD has informed HP of a potential security vulnerability in some AMD Secure Processors, which might allow loss of integrity or confidentiality. AMD has released firmware updates to mitigate this vulnerability. AMD has released updates to mitigate the potential vulnerability. HP has identified...

HP Sure Start IFD Protection - BIOS Security Update

A potential security vulnerability has been identified in HP Sure Start’s protection of the Intel Flash Descriptor in certain HP PC products, which might allow security bypass, arbitrary code execution, loss of integrity or confidentiality, or denial of service. HP is releasing BIOS updates to...

AMD Embedded Processors Security Update

AMD has informed HP of potential vulnerabilities in some AMD Embedded Processors and AMD Chipset Driver for the embedded processors, which might allow arbitrary code execution, denial of service, loss of integrity, loss of availability, or loss of confidentiality. AMD has released firmware and...

HP Support Assistant - Potential Escalation of Privilege

A potential security vulnerability has been identified in the HP Support Assistant for versions prior to 9.47.41.0. The vulnerability could potentially allow a local attacker to escalate privileges via an arbitrary file write. HP has identified affected versions and the minimum version that...

NVIDIA GPU Display Driver July 2025 Security Update

NVIDIA has informed HP of potential security vulnerabilities identified in the NVIDIA® GPU Display Driver for Windows, which might allow code execution, denial of service, escalation of privileges, information disclosure, or data tampering. NVIDIA has released updates to mitigate these...

Realtek SD Card Reader Driver Security Update

Potential vulnerabilities have been identified in the HP PC products that are configured with certain Realtek SD card readers, which might allow escalation of privilege or information disclosure. Updated Realtek SD card reader drivers have been released for mitigation. Realtek has released update...

Intel Graphics Software August 2025 Security Update

Intel has informed HP of potential security vulnerabilities for some Intel® Graphics software, which might allow escalation of privilege or denial of service. Intel is releasing software updates to mitigate these potential vulnerabilities. Intel has released updates to mitigate the potential...

HyperX NGENUITY - Arbitrary Code Execution

HyperX NGENUITY software is potentially vulnerable to arbitrary code execution. HP is releasing updated software to address the potential vulnerability. Use the following steps to resolve potential vulnerabilities...

Intel Graphics Software Security Update

Intel has informed HP of potential security vulnerabilities in some Intel® Graphics software, which might allow escalation of privilege, denial of service, or information disclosure. Intel is releasing software updates to mitigate these potential vulnerabilities. Intel has released updates to...

Intel Core Ultra Processor Firmware Security Update

Intel has informed HP of potential security vulnerabilities for some Intel® Core™ Ultra processors, which might allow information disclosure. Intel is releasing microcode updates to mitigate these potential vulnerabilities. Intel has released updates to mitigate the potential vulnerabilities. HP...

Poly Lens Desktop Application – Privilege Escalation

A vulnerability in the Poly Lens Desktop application running on the Windows platform might allow modifications to the filesystem, which might lead to SYSTEM level privileges being granted. HP has released updates to mitigate the potential vulnerabilities. HP has identified affected products with...

Poly Video and Voice Devices - Potential Arbitrary Code Execution

A vulnerability in the FreeType font library affects Poly Video and Voice devices that are on the Android platform. This might result in arbitrary code execution. HP has released updates to mitigate the potential vulnerabilities. HP has identified affected products with minimum versions that...

HP Security Manager – Potential Remote Code Execution

HP Security Manager is potentially vulnerable to Remote Code Execution due to the use of Microsoft OLE Database library version 18.4 for Microsoft’s SQL Server Express and Microsoft’s SQL Server. HP has provided a software update for potentially affected products...

HP Hotkey Support – Escalation of Privilege

A potential security vulnerability has been identified in the HPAudioAnalytics service included in the HP Hotkey Support software, which might allow escalation of privilege. HP is releasing software updates to mitigate the potential vulnerability. HP has identified affected platforms and...

Intel Rapid Storage Technology Software August 2025 Security Update

Intel has informed HP of a potential security vulnerability for Intel® Rapid Storage Technology installation software which may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential...

AMD Client UEFI Firmware August 2025 Security Update

AMD has informed HP of potential vulnerabilities identified in some AMD client processor platforms, which might lead to loss of confidentiality, loss of integrity, arbitrary code execution, loss of availability, or denial of service. AMD is releasing firmware updates to mitigate these...

Intel Processor Stream Cache August 2025 Security Update

Intel has informed HP of a potential security vulnerability in some Intel® Processor stream cache mechanisms, which might allow escalation of privilege. Intel is releasing microcode updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential vulnerabilit...

Intel Connectivity Performance Suite August 2025 Security Update

Intel has informed HP of a potential security vulnerability in some Intel® Connectivity Performance Suite software installers, which might allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Intel has released updates to mitigate the...

Intel PROSet/Wireless WiFi Software August 2025 Security Update

Intel has informed HP of a potential security vulnerability for some Intel® PROSet/Wireless WiFi Software for Windows, which might allow denial of service. Intel is releasing software updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential...

HP BIOS Flash Protection Security Update

A potential security vulnerability has been identified in the System BIOS for some HP PC products, which might allow escalation of privilege, arbitrary code execution, denial of service, or information disclosure via a physical attack that requires specialized equipment and knowledge. HP is...

Certain HP LaserJet Pro Printers – Potential Information Disclosure

Certain HP LaserJet Pro printers may be vulnerable to information disclosure when a non-authenticated user queries a device’s local address book. Update your printer firmware...

Certain HP DesignJet products – Information disclosure

Certain HP DesignJet products may be vulnerable to information disclosure though printer's web interface allowing unauthenticated users to view sensitive print job information. HP has provided an updated firmware resolution for potentially affected products listed in the table below...

HP Linux Imaging and Printing Software - Use of DSA Key

A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software documentation. This potential vulnerability is due to the use of a weak code signing key, Digital Signature Algorithm DSA. HP has identified affected versions and the minimum software version that...

Infineon TPM Reference Implementation Out-of-Bounds Read

Infineon has informed HP of a potential security vulnerability in reference code for TPM models used in certain HP PC products, which might allow information disclosure or denial of service of the TPM. Infineon is releasing firmware updates to mitigate the vulnerability. HP has identified affecte...

AMD Transient Scheduler BIOS Security Update

AMD has informed HP of potential vulnerabilities identified in some AMD processors, which might allow loss of confidentiality. AMD is providing Platform Initialization PI firmware updates to mitigate this vulnerability. AMD has released updates to mitigate this potential vulnerabilities. HP has...

HP Support Assistant – Potential Escalation of Privilege

A potential security vulnerability has been identified in the HP Support Assistant, which allows a local attacker to escalate privileges via an arbitrary file deletion. HP has identified affected versions and the minimum version that mitigates the potential vulnerability. See the affected product...

HP Universal Print Driver – Potential Denial of Service

HP Universal Print Driver is potentially vulnerable to denial of service due to buffer overflow in versions of UPD 7.4 or older e.g., v7.3.x, v7.2.x, v7.1.x, etc.. Update your printer software...

HP Device Manager Vulnerability Update (5.0.15)

Potential vulnerabilities have been identified in HP Device Manager versions prior to HPDM 5.0.15. HP is releasing mitigation for the potential vulnerabilities as part of 5.0.15 release. All of the identified vulnerabilities listed above were addressed and fixed as part of HP Device Manager 5.0.1...

Certain Poly Trio & CCX Devices – Potential Remote Code Execution

A potential vulnerability was discovered in certain Poly Trio and CCX devices. The vulnerability might allow an attacker to execute arbitrary code without requiring additional privileges. HP has identified affected products and corresponding firmware minimum versions that mitigate potential...

Intel PTT and SPS Firmware June 2025 Security Update

Intel has informed HP of a potential security vulnerability for some Intel® PTT and Intel® SPS firmware, which might allow denial of service. Intel is releasing firmware updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential vulnerability. Certain H...

Realtek Wireless Bluetooth Security Update

A potential security vulnerability has been identified in certain Realtek Wireless Bluetooth drivers for HP PC products which might allow information disclosure. Realtek has provided an updated RTL8xxx Series Bluetooth Driver to mitigate this vulnerability. Realtek has released updates to mitigat...

HP Support Assistant – Potential Escalation of Privilege

A potential security vulnerability has been identified in the HP Support Assistant for versions prior to 9.44.18.0. The vulnerability could potentially allow a local attacker to escalate privileges via an arbitrary file write. HP has identified affected versions and the minimum version that...

HP ThinPro 8.1 SP7 Security Updates

Previous versions of HP ThinPro prior to HP ThinPro 8.1 SP7 could potentially contain security vulnerabilities. HP has released HP ThinPro 8.1 SP7, which includes updates to mitigate potential vulnerabilities. All of the identified vulnerabilities listed above were addressed and fixed as part of...

Intel Core Ultra Processors CNVi Security Update May 2025

Intel has informed HP of a potential security in the Intel® Integrated Connectivity I/O interface CNVi for some Intel® Core™ Ultra Processors, which might allow escalation of privilege. Intel is releasing firmware updates to mitigate this potential vulnerability. Intel has released updates to...

Intel 2025.2 IPU - Processors May 2025 Security Update

Intel has informed HP of potential security vulnerabilities in some Intel® Processors, which might allow denial of service or information disclosure. Intel is releasing microcode updates to mitigate these potential vulnerabilities. Intel has released updates to mitigate the potential...

Intel 2025.1 IPU – 13th and 14th Generation Processors Security Update

Intel has informed HP a potential security vulnerability in some 13th and 14th Generation Intel® Core™ Processors, which might allow denial of service. Intel is releasing microcode and UEFI reference code updates to mitigate this potential vulnerability. Intel has released updates to mitigate the...

Intel System Security Report and System Resources Defense

Intel has informed HP of potential security vulnerabilities in some Intel® System Security Report and System Resource Defense PPAM firmware which might allow escalation of privilege or information disclosure. Intel is releasing firmware updates to mitigate these potential vulnerabilities. Intel h...

AMD CPU Microcode Security Update

AMD has informed HP of a potential security vulnerability identified in the microcode patch loader for some AMD processors, which might allow arbitrary code execution and information disclosure. AMD is releasing firmware updates to mitigate these vulnerabilities. AMD has released updates to...

Intel PROSet/Wireless WiFi Software May 2025 Security Update

Intel has informed HP of potential security vulnerabilities in some Intel® PROSet/Wireless WiFi Software products, which might allow denial of service. Intel is releasing software updates to mitigate these potential vulnerabilities. Intel has released updates to mitigate the potential...

Intel Graphics Driver and Software May 2025 Security Update

Intel has informed HP of potential security vulnerabilities in some Intel® Graphics Driver software, which might allow escalation of privilege, denial of service, or information disclosure. Intel is releasing software updates to mitigate these potential vulnerabilities. Intel has released updates...