CVSS: 8.8EPSS: 0%CPEs: 40EXPL: 0CVE-2024-27458 – HP Hotkey Support – Escalation of Privilege
https://notcve.org/view.php?id=CVE-2024-27458
07 Oct 2024 — A potential security vulnerability has been identified in the HP Hotkey Support software, which might allow local escalation of privilege. HP is releasing mitigation for the potential vulnerability. Customers using HP Programmable Key are recommended to update HP Hotkey Support. • https://support.hp.com/us-en/document/ish_11342101-11342130-16/hpsbhf03977 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 7.8EPSS: 0%CPEs: 180EXPL: 0CVE-2023-26300
https://notcve.org/view.php?id=CVE-2023-26300
18 Oct 2023 — A potential security vulnerability has been identified in the system BIOS for certain HP PC products which might allow escalation of privilege. HP is releasing firmware updates to mitigate the potential vulnerability. Se ha identificado una posible vulnerabilidad de seguridad en el BIOS de System para Certain HP PC products que podría permitir una escalada de privilegios. HP está lanzando actualizaciones de firmware para mitigar la vulnerabilidad potencial. • https://support.hp.com/us-en/document/ish_9461800-9461828-16 •
CVSS: 7.8EPSS: 0%CPEs: 658EXPL: 0CVE-2022-31646
https://notcve.org/view.php?id=CVE-2022-31646
14 Jun 2023 — Potential vulnerabilities have been identified in the system BIOS of certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure. • https://support.hp.com/us-en/document/ish_6664419-6664458-16/hpsbhf03806 • CWE-863: Incorrect Authorization •
CVSS: 7.8EPSS: 0%CPEs: 658EXPL: 0CVE-2022-31645
https://notcve.org/view.php?id=CVE-2022-31645
14 Jun 2023 — Potential vulnerabilities have been identified in the system BIOS of certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure. • https://support.hp.com/us-en/document/ish_6664419-6664458-16/hpsbhf03806 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.8EPSS: 0%CPEs: 658EXPL: 0CVE-2022-31644
https://notcve.org/view.php?id=CVE-2022-31644
14 Jun 2023 — Potential vulnerabilities have been identified in the system BIOS of certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure. • https://support.hp.com/us-en/document/ish_6664419-6664458-16/hpsbhf03806 • CWE-863: Incorrect Authorization •
CVSS: 7.0EPSS: 0%CPEs: 610EXPL: 0CVE-2022-31642
https://notcve.org/view.php?id=CVE-2022-31642
14 Jun 2023 — Potential vulnerabilities have been identified in the system BIOS of certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure. • https://support.hp.com/us-en/document/ish_6662920-6662944-16/hpsbhf03805 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 7.0EPSS: 0%CPEs: 610EXPL: 0CVE-2022-31641
https://notcve.org/view.php?id=CVE-2022-31641
14 Jun 2023 — Potential vulnerabilities have been identified in the system BIOS of certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure. • https://support.hp.com/us-en/document/ish_6662920-6662944-16/hpsbhf03805 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 7.0EPSS: 0%CPEs: 610EXPL: 0CVE-2022-31640
https://notcve.org/view.php?id=CVE-2022-31640
14 Jun 2023 — Potential vulnerabilities have been identified in the system BIOS of certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure. • https://support.hp.com/us-en/document/ish_6662920-6662944-16/hpsbhf03805 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 7.8EPSS: 0%CPEs: 806EXPL: 0CVE-2022-31639
https://notcve.org/view.php?id=CVE-2022-31639
13 Jun 2023 — Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS for certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure. • https://support.hp.com/us-en/document/ish_7149996-7150021-16/hpsbhf03814 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 7.8EPSS: 0%CPEs: 806EXPL: 0CVE-2022-31638
https://notcve.org/view.php?id=CVE-2022-31638
13 Jun 2023 — Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS for certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure. • https://support.hp.com/us-en/document/ish_7149996-7150021-16/hpsbhf03814 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •