Skip to main content

Desktop Pro A 300 G3 Firmware CVE-2023-26300

HIGH
2023-10-18 hp-security-alert@hp.com
Privilege Escalation HP Desktop Pro A 300 G3 Firmware Desktop Pro A G3 Firmware Desktop Pro A G3 Microtower Firmware Zhan 66 Pro A G1 R Microtower Firmware T638 Thin Client Firmware Stream 11 Pro G5 Firmware 240 G10 Firmware 240 G6 Firmware 240 G7 Firmware 240 G9 Firmware 245 G10 Firmware 245 G7 Firmware 245 G8 Firmware 245 G9 Firmware 245 Firmware 246 G6 Firmware 246 G7 Firmware 247 G8 Firmware 250 G10 Firmware 250 G6 Firmware 250 G7 Firmware 250 G9 Firmware 255 G10 Firmware 255 G6 Firmware 255 G7 Firmware 255 G8 Firmware 255 G9 Firmware 256 G6 Firmware 256 G7 Firmware 258 G6 Firmware 258 G7 Firmware 340 G7 Firmware 348 G7 Firmware 470 G10 Firmware 470 G7 Firmware 470 G9 Firmware Stream 11 Pro G4 Firmware Zbook 15 G5 Mobile Workstation Firmware Zhan 99 G3 Mobile Workstation Firmware Zhan 99 G4 Mobile Workstation Firmware 200 G4 22 All In One Pc Rom Family Ssid 86F2 Firmware 200 G4 22 All In One Pc Rom Family Ssid 86F3 Firmware 200 G4 22 All In One Pc Rom Family Ssid 86F0 Firmware 200 Pro G4 22 All In One Pc Rom Family Ssid 86F2 Firmware 200 Pro G4 22 All In One Pc Rom Family Ssid 86F3 Firmware 200 Pro G4 22 All In One Pc Rom Family Ssid 86F0 Firmware 205 G4 22 All In One Pc Rom Family Ssid 86F2 Firmware 205 G4 22 All In One Pc Rom Family Ssid 86F3 Firmware 205 G4 22 All In One Pc Rom Family Ssid 86F0 Firmware 205 G8 24 All In One Pc Rom Family Ssid 8923 Firmware 205 G8 24 All In One Pc Rom Family Ssid 8924 Firmware 205 Pro G4 22 All In One Pc Rom Family Ssid 86F2 Firmware 205 Pro G4 22 All In One Pc Rom Family Ssid 86F3 Firmware 205 Pro G4 22 All In One Pc Rom Family Ssid 86F0 Firmware 205 Pro G8 24 All In One Pc Rom Family Ssid 8923 Firmware 205 Pro G8 24 All In One Pc Rom Family Ssid 8924 Firmware 285 G6 Microtower Rom Family Ssid 871E Firmware 285 G8 Microtower Rom Family Ssid 870E Firmware 285 Pro G6 Microtower Rom Family Ssid 871E Firmware 285 Pro G8 Microtower Rom Family Ssid 870E Firmware 295 G8 Microtower Rom Family Ssid 870E Firmware Pro Sff 280 G9 Desktop Rom Family Ssid 89B4 Firmware Pro Sff 280 G9 Desktop Rom Family Ssid 8Bc3 Firmware Pro Sff 290 G9 Desktop Rom Family Ssid 89B4 Firmware Pro Sff 290 G9 Desktop Rom Family Ssid 8Bc3 Firmware Pro Sff Zhan 66 G9 Desktop Rom Family Ssid 89B4 Firmware Pro Sff Zhan 66 G9 Desktop Rom Family Ssid 8Bc3 Firmware Pro Tower 200 G9 Desktop Rom Family Ssid 89B4 Firmware Pro Tower 200 G9 Desktop Rom Family Ssid 89B3 Firmware Pro Tower 200 G9 Desktop Rom Family Ssid 8Bc3 Firmware Pro Tower 280 G9 Desktop Rom Family Ssid 89B4 Firmware Pro Tower 280 G9 Desktop Rom Family Ssid 89B3 Firmware Pro Tower 290 G9 Desktop Rom Family Ssid 89B4 Firmware Pro Tower 290 G9 Desktop Rom Family Ssid 89B3 Firmware Pro Tower 290 G9 Desktop Rom Family Ssid 8Bc3 Firmware Pro Tower Zhan 99 G9 Desktop Rom Family Ssid 89B4 Firmware Pro Tower Zhan 99 G9 Desktop Rom Family Ssid 89B3 Firmware Pro Tower Zhan 99 G9 Desktop Rom Family Ssid 8B3C Firmware Proone 240 G10 Rom Family Ssid 8B4D Firmware Proone 240 G10 Rom Family Ssid 8B4C Firmware Proone 240 G9 Rom Family Ssid 89Eb Firmware Vr Backpack G2 Rom Family Ssid 8590 Firmware Zhan 66 Pro A G10 Rom Family Ssid 8B4E Firmware Zhan 66 Pro A G4 All In One Pc Rom Family Ssid 8923 Firmware Zhan 66 Pro A G4 All In One Pc Rom Family Ssid 8924 Firmware Zhan 99 Pro A G2 Microtower Rom Family Ssid 871E Firmware 255 G8 Rom Family Ssid 87D1 Firmware 255 G8 Rom Family Ssid 8905 Firmware 255 G8 Rom Family Ssid 890E Firmware
7.8
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.8 HIGH
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

1
CVE Published
Oct 18, 2023 - 19:15 nvd
HIGH 7.8

DescriptionNVD

A potential security vulnerability has been identified in the system BIOS for certain HP PC products which might allow escalation of privilege. HP is releasing firmware updates to mitigate the potential vulnerability.

AnalysisAI

A potential security vulnerability has been identified in the system BIOS for certain HP PC products which might allow escalation of privilege. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Technical ContextAI

A potential security vulnerability has been identified in the system BIOS for certain HP PC products which might allow escalation of privilege. HP is releasing firmware updates to mitigate the potential vulnerability. Affected products include: Hp Desktop Pro A 300 G3 Firmware, Hp Desktop Pro A G3 Firmware, Hp Desktop Pro A G3 Microtower Firmware, Hp Zhan 66 Pro A G1 R Microtower Firmware, Hp T638 Thin Client Firmware.

RemediationAI

A vendor patch is available. Apply the latest security update as soon as possible. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

Share

CVE-2023-26300 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy