Vulnerabilities > HP
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-12 | CVE-2023-26298 | Command Injection vulnerability in HP Device Manager Previous versions of HP Device Manager (prior to HPDM 5.0.10) could potentially allow command injection and/or elevation of privileges. | 8.8 |
| 2023-06-12 | CVE-2023-32673 | Unspecified vulnerability in HP products Certain versions of HP PC Hardware Diagnostics Windows, HP Image Assistant, and HP Thunderbolt Dock G2 Firmware are potentially vulnerable to elevation of privilege. | 9.8 |
| 2023-06-12 | CVE-2023-32674 | Classic Buffer Overflow vulnerability in HP PC Hardware Diagnostics Certain versions of HP PC Hardware Diagnostics Windows are potentially vulnerable to buffer overflow. | 9.8 |
| 2023-06-12 | CVE-2022-43777 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in HP products Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP BIOS for certain HP PC products which may allow arbitrary code execution, denial of service, and information disclosure. | 7.8 |
| 2023-06-12 | CVE-2022-43778 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in HP products Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP BIOS for certain HP PC products which may allow arbitrary code execution, denial of service, and information disclosure. | 7.8 |
| 2023-06-12 | CVE-2022-27539 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in HP products Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP BIOS for certain HP PC products which may allow arbitrary code execution, denial of service, and information disclosure. | 7.8 |
| 2023-06-12 | CVE-2022-27541 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in HP products Potential Time-of-Check to Time-of Use (TOCTOU) vulnerabilities have been identified in the HP BIOS for certain HP PC products which may allow arbitrary code execution, denial of service, and information disclosure. | 7.8 |
| 2023-06-09 | CVE-2019-16283 | Unspecified vulnerability in HP Softpaq Installer 4.0.100.1189 A potential security vulnerability has been identified with a version of the HP Softpaq installer that can lead to arbitrary code execution. | 7.8 |
| 2023-05-08 | CVE-2023-22779 | Classic Buffer Overflow vulnerability in HP Instantos There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's access point management protocol) UDP port (8211). | 9.8 |
| 2023-05-08 | CVE-2023-22780 | Classic Buffer Overflow vulnerability in HP Instantos There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's access point management protocol) UDP port (8211). | 9.8 |