CVE-2021-3809
high-risk
Published 2023-02-01
Potential security vulnerabilities have been identified in the BIOS (UEFI Firmware) for certain HP PC products, which might allow arbitrary code execution. HP is releasing firmware updates to mitigate these potential vulnerabilities.
Do I need to act?
-
0.06% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.8/10
High
LOCAL
/ LOW complexity
Affected Products (20)
Elitebook 725 G4 Firmware
Elitebook 745 G4 Firmware
Elitebook 755 G4 Firmware
Elitebook 820 G4 Firmware
Elitebook 828 G4 Firmware
Affected Vendors
References (2)
57
/ 100
high-risk
Severity
24/34 · High
Exploitability
0/34 · Minimal
Exposure
33/34 · Critical