Intel® PROSet/Wireless WiFi, Intel vPro® CSME WiFi, and Killer™ WiFi November 2022 Security Update

Intel has informed HP of a potential vulnerability identified in some Intel® PROSet/Wireless WiFi, Intel vPro® CSME WiFi, and Killer™ WiFi products, which might allow denial of service. Intel is releasing a firmware update to mitigate this potential vulnerability. Intel has released updates to...

Certain HP ENVY, OfficeJet, DeskJet printers - Potential denial of service

Certain HP ENVY, OfficeJet, and DeskJet printers may be vulnerable to a Denial of Service attack. Update the printer firmware...

HP PC BIOS October 2022 PCR Measurement Update

A potential security vulnerability has been identified in the system BIOS for certain HP PC products which may allow loss of integrity. HP is releasing firmware updates to mitigate the potential vulnerability. Intel has released updates to mitigate the potential vulnerabilities. HP has identified...

NVIDIA GPU Display Driver August 2022 Security Update

NVIDIA has informed HP of potential security vulnerabilities identified in the NVIDIA® GPU Display Driver for Windows, which may allow escalation of privilege, code execution, denial of service, and information disclosure. NVIDIA has released updates to mitigate these vulnerabilities. NVIDIA has...

Certain HP Print Products - Potential Buffer Overflow, Remote Code Execution

Certain HP Print Products are potentially vulnerable to Buffer Overflow and/or Remote Code Execution. Update your printer firmware...

Privilege escalation in HP Support Assistant

HP Support Assistant uses HP Performance Tune-up as a diagnostic tool. HP Support Assistant uses Fusion to launch HP Performance Tune-up. It is possible for an attacker to exploit the DLL hijacking vulnerability and elevate privileges when Fusion launches the HP Performance Tune-up. HP strives to...

Certain HP Print Products, Digital Sending products - Potential denial of service vulnerability

Certain HP Print and Digital Send products may potentially be vulnerable to a Denial of Service DOS attack when elliptical curve certificates are used. Update the printer software...

Certain HP PageWide Pro printers - Potential denial of service

Certain HP PageWide Pro Printers may be vulnerable to a potential denial of service attack. HP has provided firmware updates for potentially affected products listed in the table below...

Intel® PROSet/Wireless WiFi and Killer™ WiFi August 2022 Security Update

Intel has informed HP of potential vulnerabilities identified in some Intel® PROSet/Wireless WiFi and Killer™ WiFi products, which might allow escalation of privilege, information disclosure or denial of service. Intel is releasing firmware and software updates to mitigate these potential...

Intel® RST Software August 2022 Security Update

Intel has informed HP of a potential security vulnerability identified in the Intel® Rapid Storage Technology RST software, which might allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential...

Intel® Ethernet Controllers August 2022 Security Update

Intel has informed HP of potential security vulnerabilities in some Intel® Ethernet Controllers and Adapters which may allow denial of service. Intel is releasing firmware updates to mitigate these potential vulnerabilities. Intel has released updates to mitigate the potential vulnerabilities. HP...

Intel 2022.2 IPU BIOS Security Updates

Intel has informed HP of a potential security vulnerability in some Intel® Processors, which might allow information disclosure. Intel is releasing firmware updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential vulnerability. HP has identified...

HP PC BIOS August 2022 Security Updates for Potential SMM and TOCTOU Vulnerabilities

Potential vulnerabilities have been identified in the system BIOS of certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure. HP is releasing BIOS updates to mitigate these potential vulnerabilities. HP has...

Intel® Wireless Bluetooth® and Killer™ Bluetooth® August 2022 Security Update

Intel has informed HP of potential security vulnerabilities identified in some Intel® Wireless Bluetooth® and Killer™ Bluetooth® products, which might allow escalation of privilege, denial of service, or information disclosure. Intel is releasing software and firmware updates to mitigate these...

HP PC UEFI Secure Boot Database Update July 2022

Potential vulnerabilities have been identified in certain UEFI applications signed by HP which may allow local arbitrary code execution. HP is providing a standalone Secure Boot Update Utility SBUU for identified HP PC products to update the secure boot database so that these vulnerable UEFI...

AWS Connection Session Provisioner’s SHA256 hash is not fully verified by PCoIP Zero Clients

HP has provided updated versions of Tera2 Zero Client firmware that remediate vulnerabilities found in firmware version 22.04 and earlier. Products can be updated or replaced with the latest release by downloading from the Teradici website and following standard installation or update instruction...

HP Wolf Security Software July 2022 Update

HP has been informed of potential vulnerabilities known as RETbleed identified in some Intel® Processors and in some AMD® Processors, which may allow information disclosure. HP is releasing updates to Wolf Security software to implement the suggested mitigations from the CPU vendors. HP has...

HP ThinPro OS - File System Unlocked in HP ThinPro 7.2 Service Pack 8 (SP8)

A potential security vulnerability has been identified in HP ThinPro 7.2 Service Pack 8 SP8. The security vulnerability in SP8 is not remedied after upgrading from SP8 to Service Pack 9 SP9. HP has released Service Pack 10 SP10 to remediate the potential vulnerability introduced in SP8. Upgrade t...

Synaptics Fingerprint SGX-enabled Driver June 2022 Security Update

Synaptics has informed HP of a potential security vulnerability identified in Synaptics® Fingerprint drivers that use SGX which may allow denial of service and information disclosure. Synaptics has released mitigation for this potential vulnerability. Synaptics has released updates to mitigate th...

Intel® Processors June 2022 Security Update

Intel has informed HP of potential security vulnerabilities in Memory Mapped I/O MMIO for some Intel® Processors which may allow information disclosure. Intel is releasing firmware updates to mitigate these potential vulnerabilities. Intel has released updates to mitigate the potential...

NVIDIA GPU Display Driver May 2022 Security Update

NVIDIA has informed HP of potential security vulnerabilities identified in the NVIDIA® GPU Display Driver for Windows which may allow escalation of privilege, arbitrary code execution, denial of service, and information disclosure. NVIDIA has released updates to mitigate these vulnerabilities...

HP PC BIOS - May 2022 Security Updates

Potential security vulnerabilities have been identified in the BIOS UEFI Firmware for certain HP PC products, which might allow arbitrary code execution. HP is releasing firmware updates to mitigate these potential vulnerabilities. HP has identified affected platforms and corresponding SoftPaqs...

Intel SSD Firmware May 2022 Security Updates

Intel has informed HP of potential security vulnerabilities identified in some Intel® Solid State Drive SSD and Intel® Optane™ SSD products which may allow escalation of privilege, denial of service or information disclosure. Intel is releasing firmware updates to mitigate these potential...

Intel 2022.1 IPU BIOS Security Updates

Intel has informed HP of potential security vulnerabilities identified in some Intel® Processors, in BIOS firmware or BIOS authenticated code module for some Intel® Processors, and in the Intel® Software Guard Extensions SGX Platform which may allow escalation of privilege, information disclosure...

HP Jumpstart Escalation of Privilege

A potential security vulnerability has been identified in the HP Jumpstart software, which might allow escalation of privilege. HP is recommending that customers uninstall HP Jumpstart and use myHP software. HP Jumpstart software has been discontinued and has been replaced by myHP software. HP...

Intel 2022.1 IPU - Intel® Boot Guard and Intel® TXT Security Updates

Intel has informed HP of potential vulnerabilities identified in Intel® Boot Guard and Intel® Trusted Execution Technology TXT for some Intel® processors, which might allow escalation of privilege. Intel is releasing firmware updates and prescriptive guidance to mitigate these potential...

AMD Client UEFI Firmware May 2022 Security Updates

AMD has informed HP of potential vulnerabilities identified in AMD client platform firmware components, which might allow arbitrary code execution, denial of service, and/or information disclosure. AMD is releasing firmware updates to mitigate these vulnerabilities. AMD has released updates to...

Qualcomm and Mediatek Wireless Bluetooth April 2022 Security Updates

Qualcomm® and Mediatek have informed HP of potential security vulnerabilities in their Bluetooth devices which may allow denial of service. Software updates have been released to mitigate the potential vulnerabilities. Qualcomm and Mediatek have released updates to mitigate the potential...

Expat Library update for Teradici PCoIP Software and Firmware

HP has provided updated versions of Teradici PCoIP Software and Firmware that remediates vulnerabilities found in libexpat prior to version 2.4.7. Products can be updated or replaced with the latest release by downloading from the Teradici website and following standard installation or update...

Certain HP print products with Wi-Fi - Potential remote code execution, denial of service

Certain HP Print devices may be vulnerable to potential remote code execution or denial of service within Wi-Fi radio range of the device. HP has provided an updated firmware resolution for potentially affected products listed in the table below...

Certain HP Print Products, Digital Sending Products - Potential remote code execution and buffer overflow

Certain HP Print products and Digital Sending products may be vulnerable to potential remote code execution and buffer overflow with use of Link-Local Multicast Name Resolution or LLMNR. Update your printer firmware...

Certain HP Print Products – Potential information disclosure, denial of service, remote code execution

Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution. Update your printer firmware...

AMI UEFI Firmware March 2022 Security Updates

A potential security vulnerability has been identified in certain HP PC products using AMI UEFI firmware system BIOS which may allow arbitrary code execution. HP is releasing mitigation for these potential vulnerabilities. HP has identified affected platforms and corresponding SoftPaqs with minim...

HP PC BIOS February 2022 Security Updates for 11 Vulnerabilities

Potential vulnerabilities have been identified in the system BIOS of certain HP PC products which may allow escalation of privilege, arbitrary code execution, denial of service, and information disclosure. HP is releasing mitigation for the potential vulnerabilities. HP has identified affected...

HP ThinPro Linux Escalation of Privilege

A potential security vulnerability, known as PwnKit, has been identified in all versions of HP ThinPro OS, which might allow local escalation of privilege. For customers who cannot upgrade to HP ThinPro 7.2 and apply the patch, the following mitigation steps prevent nonprivileged customers from...

HP PC BIOS February 2022 Security Update

Potential vulnerabilities have been identified in the BIOS for some HP PC products which may allow denial of service. HP is releasing mitigation for the potential vulnerabilities. HP has identified affected platforms and corresponding SoftPaqs with minimum versions that mitigate the potential...

HP JetAdvantage Management Connector – Elevation of Privilege v.01

HP JetAdvantage Management Connector software is potentially vulnerable to Elevation of Privilege when repair of the MSI is invoked. Update your printer software...

HP Workstation BIOS February 2022 Security Update

A potential security vulnerability has been identified in certain HP Workstation BIOS UEFI firmware which may allow arbitrary code execution. HP is releasing firmware mitigations for the potential vulnerability. HP has identified affected platforms and corresponding SoftPaqs with minimum versions...

Intel 2021.2 IPU - BIOS Firmware February 2022 Security Updates

Intel has informed HP of potential security vulnerabilities identified in BIOS firmware for some Intel® Processors which may allow escalation of privilege, denial of service, or information disclosure. Intel is releasing firmware updates to mitigate these potential vulnerabilities. Intel has...

Intel® MEBx Firmware February 2022 Security Updates

Intel has informed HP of a potential security vulnerability identified in the Intel® Management Engine BIOS eXtensions MEBx which may allow escalation of privilege when provisioning over USB. Intel is releasing firmware updates to mitigate this potential vulnerability. Intel has released updates ...

Intel Wireless Wi-Fi February 2022 Security Update

Intel has informed HP of potential security vulnerabilities identified in some Intel® PROSet/Wireless Wi-Fi, Intel® Active Management Technology Intel® AMT Wireless and Killer™ Wi-Fi products which may allow escalation of privilege, denial of service, or information disclosure. Intel is releasing...

Intel® Wireless Bluetooth® and Killer™ Bluetooth® February 2022 Security Updates

Intel has informed HP of potential security vulnerabilities identified in some Intel® Wireless Bluetooth® and Killer™ Bluetooth® products which may allow denial of service. Intel is releasing software and firmware updates to mitigate these potential vulnerabilities. Intel has released updates to...

HP UEFI Firmware February 2022 Security Updates

Potential vulnerabilities have been identified in UEFI firmware BIOS for some PC products which may allow escalation of privilege and arbitrary code execution. HP is releasing firmware updates to mitigate these potential vulnerabilities. HP has identified affected platforms and corresponding...

HP Security Manager, Web Jetadmin, Digital Sending Software, and Easy Printer Manager - Potential XXE-based attacks

HP Security Manager, Web Jetadmin, Digital Sending Software, and Easy Printer Manager bundled in certain print driver packages may be vulnerable to potential XXE XML External Entity based attacks. HP has provided software updates to remediate the issue for the potentially affected products listed...

Multiple vulnerabilities in HP Support Assistant

Potential security vulnerabilities have been identified in HP Support Assistant. These vulnerabilities include privilege escalation, compromise of integrity, allowed communication with untrusted clients, and unauthorized modification of files. HP strives to address all security issues with HP...

Insyde Firmware Utility December 2021 Security Updates

HP has been informed of potential security vulnerabilities identified in the Insyde UEFI firmware update utility used by certain HP PC products which may allow escalation of privilege, denial of service, or information disclosure via local access. HP is releasing SoftPaq updates with mitigation f...

Intel® Ethernet November 2021 Security Update

Intel has informed HP of potential security vulnerabilities in firmware for some Intel® Ethernet controllers which may allow denial of service or escalation of privilege. Intel is releasing firmware updates to mitigate these potential vulnerabilities. Intel has released updates to mitigate the...

Intel® PROSet/Wireless WiFi and Killer™ WiFi November 2021 Security Updates

Intel has informed HP of potential security vulnerabilities identified in some Intel® PROSet/Wireless WiFi and Killer™ WiFi which may allow escalation of privilege, denial of service or information disclosure. Intel is releasing firmware and software updates to mitigate these potential...

Intel 2021.2 IPU – BIOS November 2021 Security Updates

Intel has informed HP of potential security vulnerabilities identified in some Intel® Processors which may allow escalation of privilege. Intel is releasing firmware updates to mitigate these potential vulnerabilities. Intel has released updates to mitigate the potential vulnerabilities. HP has...

Intel® SSD DC Firmware November 2021 Security Update

Intel has informed HP of a potential vulnerability in some Intel® Solid State Drive SSD Data Center DC products which may allow information disclosure. Intel is releasing firmware updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential vulnerability...