610 matches found
HP Security Manager - Potential Remote Code Execution
HP Security Manager is potentially vulnerable to Remote Code Execution as a result of code vulnerability within the product's solution open-source libraries. HP has provided a software update for potentially affected products...
Intel Xeon Processor August 2024 Security Update
Intel has informed HP of potential security vulnerabilities in some Intel® Xeon® Processors, which might allow escalation of privilege or denial of service. Intel is releasing firmware updates to mitigate these potential vulnerabilities. Intel has released updates to mitigate the potential...
AMD Client UEFI Firmware August 2024 Security Update
AMD has informed HP of potential security vulnerabilities identified in some AMD client platform firmware components, which might allow arbitrary code execution, escalation of privilege, information disclose, or denial of service. AMD is releasing firmware updates to mitigate these vulnerabilitie...
AMD Graphics Driver August 2024 Security Update
AMD has informed HP of potential security vulnerabilities identified in some AMD Graphics Drivers for Windows, which might allow denial of service or information disclosure. AMD is releasing software updates to mitigate these vulnerabilities. AMD has released updates to mitigate the potential...
PC BIOS Security Updates - Intel Processor Stream Cache
Intel has informed HP of potential security vulnerabilities in some Intel® Processor stream cache mechanisms, which might allow escalation of privilege. Intel is releasing microcode updates to mitigate these potential vulnerabilities. Intel has released updates to mitigate the potential...
Intel HID Event Filter Installer August 2024 Security Update
Intel has informed HP of a potential security vulnerability in some Intel® Human Interface Device HID Event Filter software installers, which might allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Intel has released updates to mitigate t...
Intel Arc & Iris Xe Graphics Software August 2024 Security Update
Intel has informed HP of a potential security vulnerability in the Intel® Arc™ & Iris® Xe Graphics software, which might allow denial of service. Intel is releasing updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential vulnerability. HP has...
Clariti Manager - Multiple Stored XSS
A vulnerability was discovered in the firmware builds up to 10.10.2.2 in Poly Clariti Manager devices. The flaw does not properly neutralize input during a web page generation. The recommendation is to update an impacted device to firmware build 10.12.0.2100 or later. Customers can receive the...
Clariti Manager - Outdated JavaScript Libraries In-Use
A vulnerability was discovered in the firmware builds up to 10.10.2.2 in Poly Clariti Manager devices. The firmware contained multiple XSS vulnerabilities in the version of JavaScript used. The recommendation is to update an impacted device to firmware build 10.12.0.2100 or later. Customers can...
Clariti Manager – Privilege Escalation Through Sudo
A vulnerability was discovered in the firmware builds up to 10.10.2.2 in Poly Clariti Manager devices. The firmware flaw does not properly implement access controls. The recommendation is to update an impacted device to firmware build 10.12.0.2100 or later. Customers will receive the latest build...
Clariti Manager - Arbitrary File Upload
A vulnerability was discovered in the firmware builds up to 10.10.2.2 in Poly Clariti Manager devices. The firmware flaw does not properly sanitize user input. The recommendation is to update an impacted device to firmware build 10.12.0.2100 or later. Customers can receive the latest builds throu...
Intel Dynamic Tuning Technology (DTT) Software May 2024 Security Update
Intel has informed HP of a potential security vulnerability in some Intel® Dynamic Tuning Technology DTT software installer which might allow escalation of privilege. Intel is releasing software updates to mitigate these potential vulnerabilities. Intel has released updates to mitigate the...
Certain HP PC products using AMI BIOS – Buffer Overflow
A potential security vulnerability has been identified in certain HP PC products using AMI BIOS, which might allow arbitrary code execution. AMI has released firmware updates to mitigate this vulnerability. AMI has released updates to mitigate the potential vulnerability. HP has identified affect...
HP Display Control Software – Escalation of Privilege
Potential vulnerabilities have been identified in the HP Display Control software component within the HP Application Enabling Software Driver which might allow escalation of privilege. HP is releasing software updates to mitigate these potential vulnerabilities. Update to HP Application Enabling...
NVIDIA GPU Display Driver June 2024 Security Update
NVIDIA has informed HP of potential security vulnerabilities identified in the NVIDIA® GPU Display Driver for Windows, which might allow code execution, denial of service, escalation of privilege, information disclosure, and data tampering. NVIDIA has released software updates to mitigate these...
Certain HP PC BIOS Logo Vulnerabilities
Potential security vulnerabilities, known as LogoFAIL, have been reported in the AMI BIOS and the Insyde BIOS used in certain HP PC products, which might allow escalation of privilege, arbitrary code execution, denial of service, information disclosure, and/or data tampering. AMI and Insyde are...
Intel Chipset Device Software May 2024 Security Update
Intel has informed HP of a potential security vulnerability in some Intel® Chipset Device Software, which might allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential vulnerability. HP has...
AMD Processors February 2024 Security Updates
AMD has informed HP of potential vulnerabilities identified in client platform firmware for some AMD processors, which might allow escalation of privilege, arbitrary code execution, denial of service, and/or information disclosure. AMD is releasing firmware updates to mitigate these...
HP PC BIOS Additional Security Update for TOCTOU
A potential Time-of-Check to Time-of Use TOCTOU vulnerability has been identified in the HP BIOS for certain HP PC products, which might allow arbitrary code execution, denial of service, and information disclosure. HP is releasing BIOS updates to mitigate the potential vulnerability. HP has...
AMD Client UEFI – Cross-Process Information Leak
AMD has informed HP of a potential security vulnerability identified in some AMD client processors, which might allow information disclosure. AMD released firmware updates to mitigate these vulnerabilities. AMD has released updates to mitigate the potential vulnerability. HP has identified affect...
Insyde BIOS June 2024 EDK II Reference Vulnerabilities
Potential EDK II reference code vulnerabilities have been identified in certain HP PC products using Insyde BIOS Insyde H20 UEFI Firmware, which might allow arbitrary code execution. Inysde has released updates to mitigate the potential vulnerabilities. Insyde has released updates to mitigate the...
HP ThinPro 8.0 SP 9 Security Updates
Previous versions of HP ThinPro prior to HP ThinPro 8.0 SP 9 could potentially contain security vulnerabilities. HP has released HP ThinPro 8.0 SP 9, which includes updates to mitigate potential vulnerabilities. All the identified vulnerabilities listed above were addressed and fixed as part of t...
AMD SPI Lock Bypass June 2024 Security Update
AMD has informed HP of a potential weakness in AMD SPI protection features, which might allow arbitrary code execution. AMD is releasing firmware updates and HP is enabling AMD ROM Armor to mitigate these vulnerabilities. AMD has released updates to mitigate the potential vulnerability. HP has...
Intel 2024.2 IPU - BIOS May 2024 Security Update
Intel has informed HP of potential security vulnerabilities in some Intel® Processors, which might allow information disclosure and/or denial of service. Intel is releasing microcode updates to mitigate the potential vulnerabilities. Intel has released updates to mitigate the potential...
HP PC BIOS May 2024 Security Updates for Potential Stack Buffer Overflows
Potential vulnerabilities have been identified in the system BIOS for certain HP PC products, which might allow escalation of privileges and code execution. HP is releasing firmware updates to mitigate the potential vulnerabilities. HP has identified affected platforms and corresponding SoftPaqs...
HP Advance Mobile Application – Potential Information Disclosure
HP Advance Mobile Applications for iOS and Android are potentially vulnerable to information disclosure when using an outdated version of the application via mobile devices. Update your application...
Certain HP LaserJet Pro Printers – Potential Information Disclosure
A user with device administrative privileges can change existing SMTP server settings on the device, without having to re-enter SMTP server credentials. By redirecting send-to-email traffic to the new server, the original SMTP server credentials may potentially be exposed. Update your printer...
Certain HP LaserJet Pro – Potential Cross-Site Scripting (XSS)
Certain HP LaserJet Pro devices are potentially vulnerable to a Cross-Site Scripting XSS attack via the web management interface of the device. Update your printer firmware...
HP Sure Admin Security Update
A potential security vulnerability has been identified in certain HP PC products using HP Sure Admin, which might allow escalation of privilege. HP is releasing mitigation for the potential vulnerability. HP has identified affected platforms and corresponding SoftPaqs with minimum versions that...
Intel Thunderbolt Driver May 2024 Security Update
Intel has informed HP of a potential security vulnerability in some Intel® Thunderbolt driver software, which might allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential vulnerability. HP h...
Intel Graphics Command Center Service Software May 2024 Security Update
Intel has informed HP of a potential security vulnerability in some Intel® Graphics Command Center Service software bundled in some Intel® Graphics Windows DCH driver software, which might allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability...
Intel Arc™ & Iris® Xe Graphics Software May 2024 Security Update
Intel has informed HP of a potential security vulnerability in some Intel® Arc™ & Iris® Xe Graphics software which may allow escalation of privilege. Intel is releasing updates to mitigate the potential vulnerability. Intel has released updates to mitigate the potential vulnerability. HP has...
Intel PROSet/Wireless WiFi and Bluetooth May 2024 Security Update
Intel has informed HP of potential security vulnerabilities in some Intel® PROSet/Wireless WiFi and Bluetooth® products, which might allow denial of service. Intel is releasing firmware and software updates to mitigate these potential vulnerabilities. Intel has released updates to mitigate the...
Intel Extreme Tuning Utility (XTU) May 2024 Security Update
Intel has informed HP of a potential security vulnerability in some Intel® Extreme Tuning Utility XTU software, which might allow escalation of privilege. Intel is releasing updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential vulnerability. HP ha...
Intel Ethernet Controller I225 May 2024 Security Update
Intel has informed HP of potential security vulnerabilities in some Intel® Ethernet Controller I225 Manageability firmware which might allow escalation of privilege or denial of service. Intel released firmware and software updates to mitigate these potential vulnerabilities. Intel has released...
Intel BIOS Guard and PPAM Firmware May 2024 Security Update
Intel has informed HP of potential security vulnerabilities in some Intel® BIOS Guard and Platform Properties Assessment Module PPAM firmware, which might allow escalation of privilege. Intel is releasing firmware updates to mitigate these potential vulnerabilities. Intel has released updates to...
PCoIP Management Console – Potential Denial of Service
A vulnerability has been reported in the Grails open-source web framework used by Teradici PCoIP Management Console, which might potentially lead to a JVM crash or denial of service. An updated Teradici PCoIP Management Console has been released to mitigate this issue. Customers using Management...
HP Application Enabling Software Driver - Privileged File Overwrite
A potential security vulnerability has been identified in the HP Application Enabling Software Driver for certain HP PC products, which might allow escalation of privilege. HP is releasing software updates to mitigate this potential vulnerability. Mitigation is available in HP Application Enablin...
HP Software Packages (SoftPaqs) – Potential Escalation of Privilege
Certain HP software packages SoftPaqs are potentially vulnerable to arbitrary code execution when the SoftPaq configuration file has been modified after extraction. HP has released updated software packages SoftPaqs. HP has provided updated software packages SoftPaqs available from our website...
HP ThinPro 8.1 SP 2 Security Updates
Previous versions of HP ThinPro prior to HP ThinPro 8.1 SP 2 could potentially contain security vulnerabilities. HP has released HP ThinPro 8.1 SP 2, which includes updates to mitigate potential vulnerabilities. All of the identified vulnerabilities listed above were addressed and fixed as part o...
UC Software – Improper Access Control
A vulnerability was discovered in the firmware builds after 8.0.2.3267 and prior to 8.1.3.1301 in CCX devices. A flaw in the firmware build process did not properly restrict access to a resource from an unauthorized actor. The recommendation is to update an impacted device to the latest firmware...
HP Printer Firmware Update Utility for Certain HP DeskJet Printers - Potential Execution of Arbitrary Code
A user with administrative privileges can create a compromised dll file of the same name as the original dll within the HP printer’s Firmware Update Utility FUU bundle and place it in the Microsoft Windows default downloads directory which can lead to potential arbitrary code execution. Update yo...
Certain HP OfficeJet Pro Printers - Potential Denial of Service
Certain HP OfficeJet Pro printers are potentially vulnerable to a Denial of Service when using an improper eSCL URL GET request. Update your printer firmware...
Intel 2024.1 IPU - Chipset Software March 2024 Security Update
Intel has informed HP of potential security vulnerabilities in the Intel® Converged Security Management Engine CSME installer and Intel® Local Manageability Service software which may allow escalation of privilege or information disclosure. Intel is releasing updates to mitigate these potential...
Intel 2024.1 IPU - BIOS March 2024 Security Updates
Intel has informed HP of potential security vulnerabilities identified in some Intel® Processors and/or BIOS Firmware for some Intel® Processors which may allow escalation of privilege, denial of service, or information disclosure. Intel is releasing firmware updates to mitigate this potential...
NVIDIA GPU Display Driver February 2024 Security Update
NVIDIA has informed HP of potential security vulnerabilities identified in the NVIDIA® GPU Display Driver for Windows, which might allow escalation of privilege, arbitrary code execution, denial of service, information disclosure. NVIDIA has released updates to mitigate these vulnerabilities...
HP PC BIOS Pre-boot DMA Protection Security Update
A potential security vulnerability has been reported in the system BIOS of certain HP PC products, which might allow memory tampering. HP is releasing mitigation for the potential vulnerability. HP has identified affected platforms and corresponding SoftPaqs with minimum versions that mitigate th...
HP ThinPro 8.0 SP 8 Security Updates
...
Certain HP DesignJet Print Products – Potential Information Disclosure
Certain HP DesignJet print products are potentially vulnerable to information disclosure related to accessing memory out-of-bounds when using the general-purpose gateway GGW over port 9220. Update your printer firmware...
Tera2 Zero Client and Remote Workstation Card Firmware – Service Location Protocol
A potential denial of service vulnerability has been identified in Tera2 Zero Client and Remote Workstation Card RWC Firmware when using Service Location Protocol SLP. HP is providing recommended guidance to mitigate this potential vulnerability. The Service Location Protocol SLP, RFC 2608 is...