HP ZBook Firefly 15 G8 Firmware

CPE Details

HP ZBook Firefly 15 G8 Firmware
hp
zbook_firefly_15_g8_firmware
-
2022-03-07
14h28 +00:00
2022-03-07
18h13 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:o:hp:zbook_firefly_15_g8_firmware:-:*:*:*:*:*:*:*

Informations

Vendor

hp

Product

zbook_firefly_15_g8_firmware

Version

-

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2022-27538 2023-01-30 20h41 +00:00 A potential Time-of-Check to Time-of-Use (TOCTOU) vulnerability has been identified in the BIOS for certain HP PC products which may allow arbitrary code execution, denial of service, and information disclosure. HP is releasing BIOS updates to mitigate the potential vulnerability.
7
High
CVE-2021-39298 2022-02-16 16h38 +00:00 A potential vulnerability in AMD System Management Mode (SMM) interrupt handler may allow an attacker with high privileges to access the SMM resulting in arbitrary code execution which could be used by malicious actors to bypass security mechanisms provided in the UEFI firmware.
8.8
High
CVE-2021-39299 2022-02-16 15h38 +00:00 Potential vulnerabilities have been identified in UEFI firmware (BIOS) for some PC products which may allow escalation of privilege and arbitrary code execution.
8.8
High
CVE-2021-39300 2022-02-16 15h38 +00:00 Potential vulnerabilities have been identified in UEFI firmware (BIOS) for some PC products which may allow escalation of privilege and arbitrary code execution.
8.8
High
CVE-2021-39301 2022-02-16 15h38 +00:00 Potential vulnerabilities have been identified in UEFI firmware (BIOS) for some PC products which may allow escalation of privilege and arbitrary code execution.
8.8
High
CVE-2021-39297 2022-02-16 15h38 +00:00 Potential vulnerabilities have been identified in UEFI firmware (BIOS) for some PC products which may allow escalation of privilege and arbitrary code execution.
8.8
High
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.