CVE-2019-18913

moderate-risk

Published 2020-01-31

A potential security vulnerability with pre-boot DMA may allow unauthorized UEFI code execution using open-case attacks. This industry-wide issue requires physically accessing internal expansion slots with specialized hardware and software tools to modify UEFI code in memory. This affects HP Intel-based Business PCs that support Microsoft Windows 10 Kernel DMA protection. Affected versions depend on platform (prior to 01.04.02; or prior to 02.04.01; or prior to 02.04.02).

Do I need to act?

0.08% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 6.8/10 Medium

PHYSICAL / LOW complexity

Affected Products (20)

Elitedesk 800 G5 Dm Firmware

Elitedesk 800 G5 Sff Firmware

Elitedesk 800 G5 Twr Firmware

Eliteone 800 G5 Aio Firmware

Prodesk 400 G5 Dm Firmware

Prodesk 400 G6 Mt Firmware

Prodesk 400 G6 Sff Firmware

Prodesk 480 G6 Mt Firmware

Prodesk 600 G5 Dm Firmware

Prodesk 600 G5 Mt Firmware

Prodesk 600 G5 Pci Mt Firmware

Prodesk 600 G5 Sff Firmware

Proone 400 G5 Aio Firmware

Proone 440 G5 Aio Firmware

Proone 600 G5 Aio Firmware

Elite Dragonfly Firmware

Elite X2 G4 Firmware

Elitebook 830 G6 Firmware

Elitebook 836 G6 Firmware

Elitebook 840 G6 Firmware

Affected Vendors

References (2)

Patch https://support.hp.com/us-en/document/c06549501

/ 100

moderate-risk

Severity 22/34 · High

Exploitability 0/34 · Minimal

Exposure 23/34 · High