Denial of Service Vulnerability in HP PC BIOS
CVE-2022-23955

5.5MEDIUM

Key Information:

Vendor: HP
Status: HP Probook 440 G8 Notebook Pc; HP Prodesk 405 G6 Small Form Factor Pc
Vendor: CVE Published:; 2 March 2022

What is CVE-2022-23955?

A potential vulnerability exists within the BIOS of certain HP PC products, which may enable an attacker to cause a denial of service. This vulnerability could disrupt the normal operation of affected systems, posing severe risks to users' data accessibility and device functionality. It is crucial for users of vulnerable HP PC devices to take preventative measures, such as applying available firmware updates to mitigate the risk.

Affected Version(s)

HP ProBook 440 G8 Notebook PC; HP ProDesk 405 G6 Small Form Factor PC before 01.08.11

HP ProBook 440 G8 Notebook PC; HP ProDesk 405 G6 Small Form Factor PC before 02.07.10 (S05, S15 BIOS)

References

https://support.hp.com/us-en/document/ish_5818692-5818718-16

x_refsource_MISC

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 2, 2022
Vulnerability Reserved
Jan 25, 2022

JSON