Lucene search
K

617 matches found

Hewlett-Packard
Hewlett-Packard
added 2023/10/13 12:0 a.m.21 views

HP ThinUpdate - Improper Certificate Validation

A potential security vulnerability has been identified in the HP ThinUpdate utility also known as HP Recovery Image and Software Download Tool which may lead to information disclosure. HP is releasing mitigation for the potential vulnerability. HP ThinUpdate version 2.7.15 has been updated to...

7.5CVSS6.6AI score0.00538EPSS
Exploits0Affected Software19
Hewlett-Packard
Hewlett-Packard
added 2023/10/12 12:0 a.m.24 views

Certain HP Displays - Theft Deterrence

A potential security vulnerability has been identified in certain HP Displays supporting the Theft Deterrence feature which may allow a monitor’s Theft Deterrence to be deactivated. HP has identified affected monitors and corresponding SoftPaqs with minimum versions that mitigate the potential...

3.3CVSS7AI score0.00166EPSS
Exploits0Affected Software13
Hewlett-Packard
Hewlett-Packard
added 2023/10/06 12:0 a.m.16 views

HP LIFE Android Mobile – Potential Escalation of Privilege, Information Disclosure

HP LIFE Android Mobile application is potentially vulnerable to escalation of privilege and/or information disclosure. Update your application...

9.8CVSS7.2AI score0.00637EPSS
Exploits0Affected Software1
Hewlett-Packard
Hewlett-Packard
added 2023/10/04 12:0 a.m.25 views

Certain HP Enterprise LaserJet, LaserJet Managed printers - Potential denial of service, potential Cross Site Scripting (XSS)

Certain HP Enterprise LaserJet and HP LaserJet Managed Printers are potentially vulnerable to denial of service due to WS-Print request and potential injections of Cross Site Scripting via jQuery-UI. Update your printer firmware...

6.5CVSS6.5AI score0.44515EPSS
Exploits4
Hewlett-Packard
Hewlett-Packard
added 2023/09/21 12:0 a.m.25 views

AMD Client UEFI DXE Driver Memory Leaks September 2023 Security Update

AMD has informed HP of potential vulnerabilities identified in some AMD client platform firmware components, which might allow denial of service or information disclosure. AMD is releasing firmware updates to mitigate these vulnerabilities. AMD has released updates to mitigate the potential...

5.5CVSS7.3AI score0.00175EPSS
Exploits0Affected Software186
Hewlett-Packard
Hewlett-Packard
added 2023/09/11 12:0 a.m.38 views

NVIDIA GPU Display Driver June 2023 Security Updates

NVIDIA has informed HP of potential security vulnerabilities identified in the NVIDIA® GPU Display Driver for Windows which might allow escalation of privilege, arbitrary code execution, denial of service, or information disclosure. NVIDIA has released updates to mitigate these vulnerabilities...

8.8CVSS7.7AI score0.01387EPSS
Exploits0Affected Software163
Hewlett-Packard
Hewlett-Packard
added 2023/09/05 12:0 a.m.41 views

HP PC BIOS September 2023 Security Updates for OpenSSL

Potential vulnerabilities have been identified in the system BIOS of HP PCs using OpenSSL 1.1.1, which might allow denial of service. HP is releasing BIOS updates to OpenSSL 1.1.1s to mitigate these potential vulnerabilities. HP has identified affected platforms and corresponding SoftPaqs with...

7.5CVSS7.3AI score0.70561EPSS
Exploits7Affected Software755
Hewlett-Packard
Hewlett-Packard
added 2023/08/08 12:0 a.m.43 views

Intel 2023.3 IPU – Chipset Firmware August 2023 Security Update

Intel has informed HP of potential vulnerabilities identified in the Intel® Converged Security Management Engine CSME, Active Management Technology AMT, and Intel® Standard Manageability software that might allow escalation of privilege or denial of service. Intel is releasing updates to mitigate...

8.6CVSS7.3AI score0.00649EPSS
Exploits0Affected Software832
Hewlett-Packard
Hewlett-Packard
added 2023/08/08 12:0 a.m.25 views

Intel® Unite® Hub Software August 2023 Security Update

Intel has informed HP of a potential vulnerability identified in the Intel® Unite® Hub software, which may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential vulnerability. HP has...

7.8CVSS7AI score0.00131EPSS
Exploits0Affected Software43
Hewlett-Packard
Hewlett-Packard
added 2023/08/08 12:0 a.m.40 views

Intel® PROSet/Wireless WiFi and Killer™ WiFi August 2023 Security Update

Intel has informed HP of potential vulnerabilities identified in some Intel® PROSet/Wireless WiFi and Killer™ WiFi products, which might allow escalation of privilege or denial of service. Intel is releasing firmware and software updates to mitigate these potential vulnerabilities. Intel has...

8.2CVSS7.3AI score0.0061EPSS
Exploits0Affected Software423
Hewlett-Packard
Hewlett-Packard
added 2023/08/08 12:0 a.m.54 views

AMD Client UEFI Firmware August 2023 Security Update

AMD has informed HP of a potential security vulnerability identified in some AMD client platform firmware components, which might allow arbitrary code execution. AMD is releasing firmware updates to mitigate these vulnerabilities. AMD has released updates to mitigate the potential vulnerability. ...

7.8CVSS7.5AI score0.00299EPSS
Exploits0Affected Software252
Hewlett-Packard
Hewlett-Packard
added 2023/08/08 12:0 a.m.50 views

Intel 2023.3 IPU – BIOS August 2023 Security Updates

Intel has informed HP of potential vulnerabilities identified for some Intel® Processors and/or supporting BIOS firmware, which might allow escalation of privilege, information disclosure, or denial of service. Intel is releasing firmware updates and prescriptive guidance to mitigate these...

8CVSS7.2AI score0.03882EPSS
Exploits1Affected Software683
Hewlett-Packard
Hewlett-Packard
added 2023/08/08 12:0 a.m.86 views

AMD® Ryzen Master™ SDK February 2023 Security Update

AMD has informed HP of a potential security vulnerability identified in the AMD® Ryzen Master™ Monitoring SDK, which might allow escalation of privilege. AMD has released software to mitigate the potential vulnerability. AMD has released updates to mitigate the potential vulnerability. HP has...

7.8CVSS7AI score0.00224EPSS
Exploits0Affected Software12
Hewlett-Packard
Hewlett-Packard
added 2023/08/02 12:0 a.m.26 views

Certain HP and Samsung printer software - Potential elevation of privileges

Certain HP and Samsung Printer software packages may potentially be vulnerable to elevation of privilege due to Uncontrolled Search Path Element. Update the printer software...

7.3CVSS7AI score0.00188EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2023/07/20 12:0 a.m.30 views

HP Security Manager and Web Jetadmin - Potential remote code execution

HP Security Manager and Web Jetadmin may potentially be vulnerable to Remote Code Execution when using certain versions of Microsoft SQL Server Express. For additional information regarding the potential vulnerability and Microsoft SQL security patches for existing installations, please visit the...

8.8CVSS8.2AI score0.06153EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2023/07/20 12:0 a.m.22 views

Certain HP LaserJet Pro print products - Potential elevation of privilege and/or information disclosure

Certain HP LaserJet Pro print products are potentially vulnerable to an Elevation of Privilege and/or Information Disclosure related to a lack of authentication with certain endpoints. Update the printer firmware...

9.8CVSS7.2AI score0.00648EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2023/06/22 12:0 a.m.26 views

Certain HP LaserJet Pro Print Products – Potential Buffer Overflow and/or Denial of Service

Certain HP LaserJet Pro print products are potentially vulnerable to Buffer Overflow and/or Denial of Service when using the backup & restore feature through the embedded web service on the device. Update the printer firmware...

8.8CVSS7AI score0.0043EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2023/06/22 12:0 a.m.24 views

Certain HP LaserJet Pro Print Products - Potential Remote Code Execution, Information Disclosure

Certain HP LaserJet Pro print products are potentially vulnerable to Potential Remote Code Execution and/or Elevation of Privilege via Server-Side Request Forgery SSRF using the Web Service Eventing model. Update the printer firmware...

9.8CVSS7.7AI score0.01849EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2023/06/22 12:0 a.m.38 views

Certain HP LaserJet Pro Print Products - Potential Buffer Overflow

Certain HP LaserJet Pro print products are potentially vulnerable to Buffer Overflow when performing a GET request to scan jobs. Update the printer firmware...

8.8CVSS7AI score0.00397EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2023/06/22 12:0 a.m.24 views

Certain HP LaserJet Pro Print Products - Potential Buffer Overflow

Certain HP LaserJet Pro print products are potentially vulnerable to a stack-based buffer overflow related to the compact font format parser. Update the printer firmware...

8.8CVSS7.3AI score0.00372EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2023/06/20 12:0 a.m.33 views

AMI UEFI Firmware June 2023 Security Update (TOCTOU)

A potential Time-of-Check to Time-of-Use TOCTOU vulnerability has been identified in certain HP PC products using AMI UEFI Firmware system BIOS, which might allow arbitrary code execution. AMI has released updates to mitigate the potential vulnerability. AMI has released updates to mitigate the...

7CVSS10AI score0.00128EPSS
Exploits0Affected Software419
Hewlett-Packard
Hewlett-Packard
added 2023/06/12 12:0 a.m.48 views

Certain HP Enterprise LaserJet MFP Products – Potential Buffer Overflow, Remote Code Execution

A potential security vulnerability has been identified for certain HP multifunction printers MFPs. The vulnerability may lead to Buffer Overflow and/or Remote Code Execution when running HP Workpath solutions on potentially affected products. Update the printer firmware...

9.8CVSS8AI score0.01465EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2023/05/11 12:0 a.m.39 views

HP PC Hardware Diagnostics Windows, HP Image Assistant, and HP Thunderbolt Dock G2 Firmware – Potential Buffer Overflow, Elevation of Privilege

Certain versions of HP PC Hardware Diagnostics Windows, HP Image Assistant, and HP Thunderbolt Dock G2 Firmware are potentially vulnerable to buffer overflow and/or elevation of privilege. HP has released updates to mitigate the potential vulnerabilities. HP has identified affected platforms and...

9.8CVSS7.4AI score0.00892EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2023/05/09 12:0 a.m.61 views

Intel 2023.2 IPU – BIOS May 2023 Security Update

Intel has informed HP of potential vulnerabilities identified in BIOS firmware for some Intel® Processors which might allow escalation of privilege and information disclosure. Intel is releasing firmware updates to mitigate these potential vulnerabilities. Intel has released updates to mitigate t...

7.8CVSS7.1AI score0.00247EPSS
Exploits0Affected Software391
Hewlett-Packard
Hewlett-Packard
added 2023/05/09 12:0 a.m.41 views

Intel® Virtual RAID on CPU (VROC) May 2023 Security Update

Intel has informed HP of potential security vulnerabilities in the Intel® Virtual RAID on CPU VROC software, which might allow escalation of privilege or denial of service. Intel is releasing software updates to mitigate these potential vulnerabilities. Intel has released updates to mitigate the...

7.8CVSS7.3AI score0.00184EPSS
Exploits0Affected Software5
Hewlett-Packard
Hewlett-Packard
added 2023/05/09 12:0 a.m.16 views

Intel Unite® Client Software May 2023 Security Update

Intel has informed HP of potential security vulnerability in the Intel® Unite® Client software for Windows, which might allow escalation of privilege. Intel is releasing firmware updates to mitigate these potential vulnerability. Intel has released updates to mitigate the potential vulnerability...

7.8CVSS7.1AI score0.00147EPSS
Exploits0Affected Software44
Hewlett-Packard
Hewlett-Packard
added 2023/05/09 12:0 a.m.73 views

AMD Client UEFI Firmware May 2023 Security Update

AMD has informed HP of potential vulnerabilities identified in client platform components for some AMD Athlon™ Processors and Ryzen™ Processors, which might allow arbitrary code execution, denial of service, and/or information disclosure. AMD is releasing firmware updates to mitigate these...

9.1CVSS7.3AI score0.00771EPSS
Exploits0Affected Software238
Hewlett-Packard
Hewlett-Packard
added 2023/05/05 12:0 a.m.63 views

HP PC BIOS August 2022 Additional Updates for Potential SMM and TOCTOU Vulnerabilities

Potential vulnerabilities have been identified in the system BIOS of certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure. HP is releasing BIOS updates to mitigate these potential vulnerabilities. HP has...

7.8CVSS1.7AI score0.00313EPSS
Exploits0Affected Software346
Hewlett-Packard
Hewlett-Packard
added 2023/05/04 12:0 a.m.47 views

NVIDIA® GPU Display Driver March 2023 Security Update

NVIDIA has informed HP of potential security vulnerabilities identified in the NVIDIA® GPU Display Driver for Windows which might allow escalation of privilege, denial of service, and information disclosure. NVIDIA has released software updates to mitigate these vulnerabilities. NVIDIA has releas...

8.8CVSS6.3AI score0.00367EPSS
Exploits0Affected Software152
Hewlett-Packard
Hewlett-Packard
added 2023/04/13 12:0 a.m.70 views

HP Device Manager Security Updates

Previous versions of HP Device Manager prior to HPDM 5.0.10 could potentially allow command injection and/or elevation of privileges. HP has released HP Device Manager 5.0.10, which includes updates to mitigate these potential vulnerabilities. All the identified vulnerabilities listed previously...

9.8CVSS7.7AI score0.8377EPSS
Exploits15
Hewlett-Packard
Hewlett-Packard
added 2023/04/06 12:0 a.m.17 views

Certain HP ENVY, LaserJet, OfficeJet, PageWide Pro print products - Potential Buffer Overflow, Elevation of Privilege

Certain HP ENVY, LaserJet, OfficeJet, and PageWide Pro print products are potentially vulnerable to Buffer Overflow and/or Elevation of Privilege. Update the printer firmware...

9.8CVSS9AI score0.00892EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2023/04/06 12:0 a.m.30 views

Certain HP LaserJet, PageWide Pro Print Products - Potential Heap Overflow, Remote Code Execution

Certain HP LaserJet and PageWide Pro print products are potentially vulnerable to Heap Overflow and/or Remote Code Execution. Update the printer firmware...

9.8CVSS7AI score0.01486EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2023/04/06 12:0 a.m.16 views

Certain HP ENVY, LaserJet, OfficeJet, PageWide Pro Print Products - Potential Buffer Overflow, Remote Code Execution

Certain HP ENVY, LaserJet Pro, OfficeJet Pro, and PageWide Pro print products are potentially vulnerable to Buffer Overflow and/or Remote Code Execution. Update the printer firmware...

9.8CVSS9.8AI score0.01486EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2023/04/03 12:0 a.m.29 views

Certain HP Enterprise LaserJet and HP LaserJet Managed printers - Potential information disclosure

Certain HP Enterprise LaserJet and HP LaserJet Managed Printers are potentially vulnerable to information disclosure when IPsec is enabled with FutureSmart version 5.6. Update the printer firmware...

7.5CVSS6.7AI score0.00867EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2023/03/27 12:0 a.m.21 views

Certain DesignJet and PageWide XL products - Potential information disclosure

Certain DesignJet and PageWide XL TAA compliant models may have risk of potential information disclosure if the hard disk drive is physically removed from the printer. HP has provided firmware updates to resolve the issue for the potentially affected products listed in the table below...

4.6CVSS6.2AI score0.01189EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2023/03/21 12:0 a.m.65 views

Insyde UEFI Firmware March 2023 Security Update (TOCTOU)

Potential Time-of-Check to Time-of-Use TOCTOU vulnerabilities have been identified in certain HP PC products using Insyde UEFI firmware InsydeH20, which may allow arbitrary code execution, denial of service, and information disclosure. Firmware updates have been released to mitigate the potential...

7.8CVSS7.2AI score0.00174EPSS
Exploits0Affected Software357
Hewlett-Packard
Hewlett-Packard
added 2023/02/21 12:0 a.m.42 views

HP PC BIOS February 2023 Security Update (TOCTOU)

Potential Time-of-Check to Time-of Use TOCTOU vulnerabilities have been identified in the HP BIOS for certain HP PC products which may allow arbitrary code execution, denial of service, and information disclosure. HP is releasing BIOS updates to mitigate the potential vulnerabilities. HP has...

7.8CVSS7.5AI score0.00198EPSS
Exploits1Affected Software390
Hewlett-Packard
Hewlett-Packard
added 2023/02/14 12:0 a.m.48 views

Intel 2023.1 IPU – BIOS February 2023 Security Updates

Intel has informed HP of potential vulnerabilities identified in some Intel® Processors with Intel® Software Guard Extensions SGX that might allow information disclosure and potential vulnerabilities in the BIOS firmware and Intel® Trusted Execution Technology TXT Secure Initialization SINIT...

8.2CVSS1.9AI score0.00249EPSS
Exploits0Affected Software684
Hewlett-Packard
Hewlett-Packard
added 2023/02/14 12:0 a.m.21 views

Intel® Integrated Sensor Solution February 2023 Security Update

Intel has informed HP of a potential security vulnerability in the Intel® Integrated Sensor Solution that might allow denial of service. Intel is releasing firmware updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential vulnerability. HP has...

6CVSS6.9AI score0.00218EPSS
Exploits0Affected Software79
Hewlett-Packard
Hewlett-Packard
added 2023/02/02 12:0 a.m.68 views

Potential Escalation of Privilege in HP Factory Preinstalled Windows 10 20H2 Images

HP Factory Preinstalled Images on certain systems that shipped with Windows 10 versions 20H2 and earlier OS versions might allow escalation of privilege via execution of certain files outside the restricted path. This potential vulnerability was remediated starting with Windows 10 versions 21H2 o...

7.8CVSS5.3AI score0.00407EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2023/01/20 12:0 a.m.104 views

NVIDIA® GPU Display Driver November 2022 Security Update

NVIDIA has informed HP of potential security vulnerabilities identified in the NVIDIA® GPU Display Driver for Windows which might allow escalation of privilege, arbitrary code execution, denial of service, or information disclosure. NVIDIA has released software updates to mitigate these...

8.8CVSS2.1AI score0.01387EPSS
Exploits0Affected Software150
Hewlett-Packard
Hewlett-Packard
added 2023/01/10 12:0 a.m.63 views

AMD Client UEFI Firmware January 2023 Security Updates

AMD® has informed HP of potential vulnerabilities identified in the AMD client platform firmware components which might allow arbitrary code execution and/or denial of service. AMD is releasing firmware updates to mitigate these vulnerabilities. AMD has released updates to mitigate the potential...

7.8CVSS1.9AI score0.00256EPSS
Exploits0Affected Software202
Hewlett-Packard
Hewlett-Packard
added 2022/12/16 12:0 a.m.34 views

AMI UEFI Firmware December 2022 Security Update (TOCTOU)

A potential Time-of-Check to Time-of-Use TOCTOU vulnerability has been identified in certain HP PC products using AMI UEFI Firmware system BIOS which might allow arbitrary code execution, denial of service, and information disclosure. AMI has released updates to mitigate the potential...

7CVSS1.2AI score0.00136EPSS
Exploits0Affected Software489
Hewlett-Packard
Hewlett-Packard
added 2022/12/15 12:0 a.m.28 views

HyperX NGENUITY - Potential Elevation of Privilege

HyperX NGENUITY software is potentially vulnerable to an elevation of privilege vulnerability. This potential vulnerability was remediated on November 8, 2021. Use the following steps to resolve potential vulnerabilities...

3.2AI score
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2022/12/15 12:0 a.m.22 views

Realtek HD Audio Driver December 2022 Security Update

HP has been informed of a potential security vulnerability identified in some Realtek® High-Definition Audio Windows drivers which might allow denial of service system crash. Realtek has released updated drivers to mitigate the potential vulnerability. Realtek released updates to mitigate the...

6.5CVSS7.1AI score0.00436EPSS
Exploits1Affected Software538
Hewlett-Packard
Hewlett-Packard
added 2022/12/15 12:0 a.m.75 views

Apache Text4Shell and others update for Teradici Cloud Access Connector

HP has provided updated versions of Teradici Cloud Access Connector that remediate vulnerabilities found in Apache Commons Text Text4Shell prior to 1.10.0, Apache Commons BCEL prior to 6.6.0, Apache Commons Configuration prior to 2.7, and ESAPI The OWASP Enterprise Security API prior to 2.3.0.0...

9.8CVSS7.2AI score0.99931EPSS
Exploits46Affected Software1
Hewlett-Packard
Hewlett-Packard
added 2022/12/14 12:0 a.m.42 views

HP PC BIOS December 2022 Security Update (TOCTOU)

A potential Time-of-Check to Time-of-Use TOCTOU vulnerability has been identified in the BIOS for certain HP PC products which might allow arbitrary code execution, denial of service, and information disclosure. HP is releasing BIOS updates to mitigate the potential vulnerability. HP has identifi...

7CVSS1.4AI score0.00138EPSS
Exploits0Affected Software324
Hewlett-Packard
Hewlett-Packard
added 2022/12/14 12:0 a.m.44 views

AMD Client UEFI Firmware November 2022 Security Update

AMD has informed HP of potential vulnerabilities identified in AMD client platform firmware components, which might allow escalation of privilege and arbitrary code execution. AMD is releasing firmware updates to mitigate these vulnerabilities. AMD has released updates to mitigate the potential...

7.5CVSS1.8AI score0.0026EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2022/12/12 12:0 a.m.40 views

HP Security Manager - Multiple vulnerabilities

Potential vulnerabilities have been identified in HP Security Manager which may allow escalation of privilege, arbitrary code execution, and information disclosure. Update your printer software...

8.8CVSS3.6AI score0.01522EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2022/12/06 12:0 a.m.38 views

Privilege escalation via HPSFViewer

HPSFViewer might allow Escalation of Privilege. This potential vulnerability was remediated on July 29th, 2022. Customers who opted for automatic updates should have already received the remediation. HP strives to address all security issues with HP apps at best possible speed and make the latest...

7.8CVSS2.7AI score0.00172EPSS
Exploits0
Total number of security vulnerabilities617