Denial of Service Vulnerability in HP PC BIOS Products
CVE-2022-23954

5.5MEDIUM

Key Information:

Vendor: HP
Status: HP Probook 440 G8 Notebook Pc; HP Prodesk 405 G6 Small Form Factor Pc
Vendor: CVE Published:; 2 March 2022

What is CVE-2022-23954?

A vulnerability has been identified in the BIOS of certain HP PC products, which could potentially allow attackers to execute a denial of service attack. This could result in disruptions to the normal functioning of the affected systems, compromising availability and reliability.

Affected Version(s)

HP ProBook 440 G8 Notebook PC; HP ProDesk 405 G6 Small Form Factor PC before 01.08.11

HP ProBook 440 G8 Notebook PC; HP ProDesk 405 G6 Small Form Factor PC before 02.07.10 (S05, S15 BIOS)

References

https://support.hp.com/us-en/document/ish_5818692-5818718-16

x_refsource_MISC

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 2, 2022
Vulnerability Reserved
Jan 25, 2022

JSON