hp-support-head-portlet

Actions
Loading...
HP Customer Support - Knowledge Base

hp-contact-secondary-navigation-portlet

Actions
Loading...

hp-share-print-widget-portlet

Actions
Loading...
  • Information
    Need Windows 11 help?

    Check the information on compatibility, upgrade, and available fixes from HP and Microsoft. Windows 11 Support Center

  • Feedback

hp-concentra-wrapper-portlet

Actions
Loading...

Intel 2021.2 IPU - BIOS Firmware February 2022 Security Updates

Intel has informed HP of potential security vulnerabilities identified in BIOS firmware for some Intel® Processors which may allow escalation of privilege, denial of service, or information disclosure. Intel is releasing firmware updates to mitigate these potential vulnerabilities.

Severity

High

HP Reference

HPSBHF03767 Rev. 5

Release date

February 8, 2022

Last updated

September 29, 2022

Category

PC

Potential Security Impact

Escalation of Privilege, Denial of Service, Information Disclosure

Scroll to Resolution

Receive updates on this bulletin

Relevant Common Vulnerabilities and Exposures (CVE) List

Reported by: Intel

List of CVE IDs

CVE ID

Base Score

Base Vector

Vendor ID

CVE-2021-0103

8.2

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

INTEL-SA-00527

CVE-2021-0114

7.9

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N

INTEL-SA-00527

CVE-2021-0115

7.9

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N

INTEL-SA-00527

CVE-2021-0116

7.9

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N

INTEL-SA-00527

CVE-2021-0117

7.9

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N

INTEL-SA-00527

CVE-2021-0118

7.9

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N

INTEL-SA-00527

CVE-2021-0099

7.8

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

INTEL-SA-00527

CVE-2021-0156

7.5

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

INTEL-SA-00527

CVE-2021-0111

7.2

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N

INTEL-SA-00527

CVE-2021-0107

7.2

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N

INTEL-SA-00527

CVE-2021-0125

6.7

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:L

INTEL-SA-00527

CVE-2021-0145

6.5

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

INTEL-SA-00561

CVE-2021-0124

6.3

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:H

INTEL-SA-00527

CVE-2021-0119

5.8

CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L

INTEL-SA-00527

CVE-2021-0127

5.6

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H

INTEL-SA-00532

CVE-2021-0092

4.7

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H

INTEL-SA-00527

CVE-2021-33120

3.6

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:L

INTEL-SA-00589

CVE-2021-0091

3.2

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N

INTEL-SA-00527

CVE-2021-0093

2.4

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L

INTEL-SA-00527

Learn more about CVSS 3.1 base metrics, which range from 0 to 10.

PSR-2022-0007

References

Resolution

Intel has released updates to mitigate the potential vulnerabilities. HP has identified affected platforms and corresponding SoftPaqs with minimum versions that mitigate the potential vulnerabilities. See the affected platforms listed below.

Newer versions may become available and the minimum versions listed below may become obsolete.  If a SoftPaq Link becomes invalid, check the HP Customer Support - Software and Driver Downloads site to obtain the latest update for your product model.

HP recommends keeping your system up to date with the latest firmware and software.

Note:

This bulletin might be updated when new information and/or SoftPaqs are available. Sign up for HP Subscriptions to be notified and receive:

  • Product support eAlerts

  • Driver updates

  • Security Bulletin updates

SoftPaqs and affected products

Find the SoftPaqs that resolve the vulnerabilities of your system.

SoftPaq Status

A status is provided if no SoftPaq is listed for a particular product.

  • Pending: SoftPaq is in progress.

  • Under investigation: System under investigation for impact, or the SoftPaq is under investigation for feasibility/availability.

  • Not available: SoftPaq not available due to technical or logistical constraints.

  • Check Support Page: The listed SoftPaq has been removed from the download site. SoftPaqs with newer versions may be available on the HP Customer Support - Software and Driver Downloads site.