CVSS: 7.8EPSS: 0%CPEs: 658EXPL: 0CVE-2022-31646
https://notcve.org/view.php?id=CVE-2022-31646
14 Jun 2023 — Potential vulnerabilities have been identified in the system BIOS of certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure. • https://support.hp.com/us-en/document/ish_6664419-6664458-16/hpsbhf03806 • CWE-863: Incorrect Authorization •
CVSS: 7.8EPSS: 0%CPEs: 658EXPL: 0CVE-2022-31645
https://notcve.org/view.php?id=CVE-2022-31645
14 Jun 2023 — Potential vulnerabilities have been identified in the system BIOS of certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure. • https://support.hp.com/us-en/document/ish_6664419-6664458-16/hpsbhf03806 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.8EPSS: 0%CPEs: 658EXPL: 0CVE-2022-31644
https://notcve.org/view.php?id=CVE-2022-31644
14 Jun 2023 — Potential vulnerabilities have been identified in the system BIOS of certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure. • https://support.hp.com/us-en/document/ish_6664419-6664458-16/hpsbhf03806 • CWE-863: Incorrect Authorization •
CVSS: 7.8EPSS: 0%CPEs: 658EXPL: 0CVE-2022-27537
https://notcve.org/view.php?id=CVE-2022-27537
30 Jan 2023 — Potential vulnerabilities have been identified in the system BIOS of certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure. HP is releasing BIOS updates to mitigate these potential vulnerabilities. • https://support.hp.com/us-en/document/ish_6664419-6664458-16/hpsbhf03806 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 6.0EPSS: 0%CPEs: 285EXPL: 0CVE-2019-18618
https://notcve.org/view.php?id=CVE-2019-18618
22 Jul 2020 — Incorrect access control in the firmware of Synaptics VFS75xx family fingerprint sensors that include external flash (all versions prior to 2019-11-15) allows a local administrator or physical attacker to compromise the confidentiality of sensor data via injection of an unverified partition table. Un control de acceso incorrecto en el firmware de los sensores de huellas dactilares de la familia Synaptics VFS75xx que incluye flash externo (todas las versiones anteriores al 15/11/2019) permite a un administra... • https://support.hp.com/us-en/document/c06696474 •