CVE-2023-26300

7.8HIGH

Key Information

Vendor: HP
Status: HP PC products
Vendor: CVE Published:; 18 October 2023

Summary

A potential security vulnerability has been identified in the system BIOS for certain HP PC products which might allow escalation of privilege. HP is releasing firmware updates to mitigate the potential vulnerability.

Affected Version(s)

HP PC products <= See HP Security Bulletin reference for affected versions.

Refferences

https://support.hp.com/us-en/document/ish_9461800-9461828-16

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 18, 2023
Vulnerability Reserved
Feb 21, 2023

Collectors

NVD DatabaseMitre Database