CVE-2019-6321
Severity Score
7.2
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
HP has identified a security vulnerability with some versions of Workstation BIOS (UEFI Firmware) where the runtime BIOS code could be tampered with if the TPM is disabled. This vulnerability relates to Workstations whose TPM is disabled by default.
HP ha encontrado una vulnerabilidad de seguridad con algunas versiones de Workstation BIOS (UEFI Firmware), donde el tiempo de ejecución del código BIOS podría ser manipulado si el TPM está deshabilitado. Esta vulnerabilidad esta relacionada con Workstatiosn cuyo TPM está deshabilitado por defecto.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2019-01-15 CVE Reserved
- 2019-05-29 CVE Published
- 2023-03-07 EPSS Updated
- 2024-08-04 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-667: Improper Locking
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://support.hp.com/us-en/document/c06318199 | 2020-08-24 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Hp Search vendor "Hp" | Z4 G4 Workstation Firmware Search vendor "Hp" for product "Z4 G4 Workstation Firmware" | < 1.70 Search vendor "Hp" for product "Z4 G4 Workstation Firmware" and version " < 1.70" | - |
Affected
| in | Hp Search vendor "Hp" | Z4 G4 Workstation Search vendor "Hp" for product "Z4 G4 Workstation" | - | - |
Safe
|
| Hp Search vendor "Hp" | Z4 G4 Core-x Workstation Firmware Search vendor "Hp" for product "Z4 G4 Core-x Workstation Firmware" | < 1.70 Search vendor "Hp" for product "Z4 G4 Core-x Workstation Firmware" and version " < 1.70" | - |
Affected
| in | Hp Search vendor "Hp" | Z4 G4 Core-x Workstation Search vendor "Hp" for product "Z4 G4 Core-x Workstation" | - | - |
Safe
|
| Hp Search vendor "Hp" | Z6 G4 Workstation Firmware Search vendor "Hp" for product "Z6 G4 Workstation Firmware" | < 1.71 Search vendor "Hp" for product "Z6 G4 Workstation Firmware" and version " < 1.71" | - |
Affected
| in | Hp Search vendor "Hp" | Z6 G4 Workstation Search vendor "Hp" for product "Z6 G4 Workstation" | - | - |
Safe
|
| Hp Search vendor "Hp" | Z8 G4 Workstation Firmware Search vendor "Hp" for product "Z8 G4 Workstation Firmware" | < 1.71 Search vendor "Hp" for product "Z8 G4 Workstation Firmware" and version " < 1.71" | - |
Affected
| in | Hp Search vendor "Hp" | Z8 G4 Workstation Search vendor "Hp" for product "Z8 G4 Workstation" | - | - |
Safe
|
| Hp Search vendor "Hp" | Z4 G4 Workstation Firmware Search vendor "Hp" for product "Z4 G4 Workstation Firmware" | < 1.70 Search vendor "Hp" for product "Z4 G4 Workstation Firmware" and version " < 1.70" | linux |
Affected
| in | Hp Search vendor "Hp" | Z4 G4 Workstation Search vendor "Hp" for product "Z4 G4 Workstation" | - | - |
Safe
|
| Hp Search vendor "Hp" | Z4 G4 Core-x Workstation Firmware Search vendor "Hp" for product "Z4 G4 Core-x Workstation Firmware" | < 1.70 Search vendor "Hp" for product "Z4 G4 Core-x Workstation Firmware" and version " < 1.70" | linux |
Affected
| in | Hp Search vendor "Hp" | Z4 G4 Core-x Workstation Search vendor "Hp" for product "Z4 G4 Core-x Workstation" | - | - |
Safe
|
| Hp Search vendor "Hp" | Z6 G4 Workstation Firmware Search vendor "Hp" for product "Z6 G4 Workstation Firmware" | < 1.71 Search vendor "Hp" for product "Z6 G4 Workstation Firmware" and version " < 1.71" | linux |
Affected
| in | Hp Search vendor "Hp" | Z6 G4 Workstation Search vendor "Hp" for product "Z6 G4 Workstation" | - | - |
Safe
|
| Hp Search vendor "Hp" | Z8 G4 Workstation Firmware Search vendor "Hp" for product "Z8 G4 Workstation Firmware" | < 1.71 Search vendor "Hp" for product "Z8 G4 Workstation Firmware" and version " < 1.71" | linux |
Affected
| in | Hp Search vendor "Hp" | Z8 G4 Workstation Search vendor "Hp" for product "Z8 G4 Workstation" | - | - |
Safe
|