CVE-2022-37020

{"id": "CVE-2022-37020", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.8, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 4.2, "exploitabilityScore": 2.5}]}, "published": "2024-06-10T23:15:49.503", "references": [{"url": "https://support.hp.com/us-en/document/ish_10737430-10737454-16/hpsbhf03943", "source": "hp-security-alert@hp.com"}, {"url": "https://support.hp.com/us-en/document/ish_10737430-10737454-16/hpsbhf03943", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-120"}]}], "descriptions": [{"lang": "en", "value": "Potential vulnerabilities have been identified in the system BIOS for certain HP PC products, which might allow escalation of privileges and code execution. HP is releasing firmware updates to mitigate the potential vulnerabilities."}, {"lang": "es", "value": "Se han identificado posibles vulnerabilidades en el BIOS del sistema para ciertos productos de PC HP, que podr\u00edan permitir la escalada de privilegios y la ejecuci\u00f3n de c\u00f3digo. HP est\u00e1 lanzando actualizaciones de firmware para mitigar las posibles vulnerabilidades."}], "lastModified": "2024-11-21T07:14:17.930", "sourceIdentifier": "hp-security-alert@hp.com"}