Security Bulletins

HP takes the privacy and security of its customers very seriously and always strives to provide prompt notification and remediation of any vulnerabilities.
SeverityTitleHP IDCVEPublication dateUpdate date
HighInsyde Firmware Utility December 2021 Security Updates
HPSBHF03759
CVE-2019-12532, CVE-2021-33834
Dec 13, 2021Dec 13, 2021
MediumNVIDIA® GPU display driver October 2021 security update
HPSBHF03757
CVE-2021-1115, CVE-2021-1116, CVE-2021-1117
Nov 29, 2021Jan 12, 2022
MediumOMEN Gaming Hub and HP Command Center January 2022 security update
HPSBGN03761
CVE-2021-3919
Jan 18, 2022Jan 18, 2022
HighIntel® Thunderbolt™ Controller June 2021 Security Update
HPSBHF03731
CVE-2020-12293, CVE-2020-12294, CVE-2020-12295, CVE-2020-12296, CVE-2020-12291, CVE-2020-12292, CVE-2020-12290, CVE-2020-12288, CVE-2020-12289
Jun 08, 2021Jan 20, 2022
HighMultiple vulnerabilities in HP Support Assistant
HPSBGN03762
CVE-2022-23453, CVE-2022-23454, CVE-2022-23455, CVE-2022-23456, CVE-2020-6917, CVE-2020-6918, CVE-2020-6919, CVE-2020-6920, CVE-2020-6921, CVE-2020-6922
Jan 21, 2022Jan 25, 2022
---HPSBHF03659 rev. 4 - Intel® Smart Sound Technology March 2020 Security UpdateSee Title HPSB #See security bulletinMar 09, 2020Feb 01, 2022
MediumIntel 2021.2 IPU - Chipset Firmware February 2022 Security Update
HPSBHF03766
CVE-2021-33068
Feb 08, 2022Feb 08, 2022
CriticalHP Barcode Scanner D-Series JPOS February 2022 Security Update
HPSBPI03774
CVE-2021-44228, CVE-2021-45046, CVE-2021-44832, CVE-2021-45105
Feb 11, 2022Feb 11, 2022
MediumCertain HP Enterprise LaserJet MFPs, HP Enterprise PageWide MFPs, HP Digital Sender - Stored cross site scripting (XSS)
HPSBPI03744
CVE-2021-3662
Sep 08, 2021Feb 15, 2022
HighBIOS June 2021 Security Updates
HPSBHF03735
CVE-2020-24489, CVE-2021-3439, CVE-2020-12357, CVE-2020-8670, CVE-2020-8700, CVE-2020-12359, CVE-2020-12358, CVE-2021-0095, CVE-2020-12360, CVE-2020-24511, CVE-2020-24513, CVE-2020-24486, CVE-2020-24512
Jun 08, 2021Feb 15, 2022
---HPSBPI03709 rev. 3 - Certain HP and Samsung-branded Print Products - IPv6 Network Stack VulnerabilitySee Title HPSB #See security bulletinDec 27, 2020Feb 16, 2022
CriticalVULNERABILITY IN APACHE LOG4J AFFECTING POLY SYSTEMSSee security bulletinSee security bulletinDec 13, 2021Feb 23, 2022
MediumIntel® Graphics Drivers August 2021 Security Update
HPSBHF03739
CVE-2021-0061, CVE-2021-0012, CVE-2021-0062
Aug 10, 2021Mar 01, 2022
Medium2021.1 IPU - Intel® CSME, SPS and LMS Security Updates
HPSBHF03734
CVE-2020-24509, CVE-2020-8704, CVE-2020-24507, CVE-2020-24516, CVE-2020-8703, CVE-2020-24506
Jun 08, 2021Mar 03, 2022
---HDX - Improper neutralization of special elements used in an SQL command ('SQL Injection')See security bulletinSee security bulletinMar 13, 2013Mar 03, 2022
MediumHDX - EXECUTION WITH UNNECESSARY PRIVILEGESSee security bulletinSee security bulletinMar 13, 2013Mar 03, 2022
MediumHDX - IMPROPER VERIFICATION OF CRYPTOGRAPHIC SIGNATURESee security bulletinSee security bulletinMar 13, 2013Mar 03, 2022
HighPoly systems - Multiple openssl vulnerabilities impactSee security bulletinSee security bulletinJun 13, 2014Mar 04, 2022
MediumHDX - CONCURRENT EXECUTION USING SHARED RESOURCE WITH IMPROPER SYNCHRONIZATION ('RACE CONDITION')See security bulletinSee security bulletinMay 07, 2013Mar 04, 2022
CriticalPoly systems - Multiple bash vulnerabilities (Shellshock)See security bulletinSee security bulletinSep 25, 2014Mar 04, 2022
HighPoly systems - Heartbleed impactSee security bulletinSee security bulletinApr 09, 2014Mar 04, 2022
CriticalRealPresence Resource Manager - Jboss Application Server ImpactSee security bulletinSee security bulletinDec 20, 2013Mar 04, 2022
MediumHDX - IMPROPER NEUTRALIZATION OF SPECIAL ELEMENTS USED IN A COMMAND ('COMMAND INJECTION')See security bulletinSee security bulletinMar 13, 2013Mar 04, 2022
HighOBI1022 - IMPROPER NEUTRALIZATION OF SPECIAL ELEMENTS USED IN AN OS COMMANDSee security bulletinSee security bulletinAug 07, 2019Mar 07, 2022
HighPOLYCOM UC SOFTWARE - EXPOSED DANGEROUS METHOD OR FUNCTIONSee security bulletinSee security bulletinJul 26, 2019Mar 07, 2022
MediumHDX - BOTNET ATTACKSSee security bulletinSee security bulletinFeb 20, 2019Mar 07, 2022
LowSTUDIO X50 – INSERTION OF SENSITIVE INFORMATION INTO LOG FILESee security bulletinSee security bulletinMar 07, 2022Mar 07, 2022
MediumVVX - USE OF HARD-CODED CREDENTIALSSee security bulletinSee security bulletinApr 23, 2019Mar 07, 2022
MediumIntel® Wireless Bluetooth® and Killer™ Bluetooth® June 2021 Security Update
HPSBHF03732
CVE-2020-26555, CVE-2020-26558
Jun 08, 2021Mar 07, 2022
HighAMD® Graphics Driver November 2021 Security Updates
HPSBHF03753
CVE-2020-12902, CVE-2020-12893, CVE-2020-12894, CVE-2020-12895, CVE-2020-12898, CVE-2020-12900, CVE-2020-12901, CVE-2020-12903, CVE-2020-12980, CVE-2020-12981, CVE-2020-12982, CVE-2020-12983, CVE-2020-12985, CVE-2020-12986, CVE-2020-12960, CVE-2020-12929, CVE-2020-12891, CVE-2020-12892, CVE-2020-12962, CVE-2020-12904, CVE-2020-12905, CVE-2020-12964, CVE-2020-12987, CVE-2020-12899, CVE-2020-12920, CVE-2020-12897, CVE-2020-12963
Nov 09, 2021Mar 07, 2022
HighEEDII – MULTIPLE SECURITY VULNERABILITIESSee security bulletinSee security bulletinMar 07, 2022Mar 07, 2022
HighSTUDIO X50 – IMPROPER NEUTRALIZATION OF SPECIAL ELEMENTS USED IN AN OS COMMANDSee security bulletinSee security bulletinMar 07, 2022Mar 07, 2022
HighUNIFIED COMMUNICATIONS - PERSISTENT CYBER THREATS AWARENESSSee security bulletinSee security bulletinJan 18, 2019Mar 07, 2022
MediumEEDII – MULTIPLE SECURITY VULNERABILITIESSee security bulletinSee security bulletinMar 07, 2022Mar 07, 2022
HighHDX - MULTIPLE WEB UI VULNERABILITIESSee security bulletinSee security bulletinApr 26, 2019Mar 07, 2022
High Plantronics Hub - Privilege Defined With Unsafe ActionsSee security bulletinSee security bulletinAug 30, 2019Mar 07, 2022
---VVX - EXPOSURE OF SENSITIVE INFORMATION TO AN UNAUTHORIZED ACTORSee security bulletinSee security bulletinJun 17, 2019Mar 07, 2022
CriticalPOLY SYSTEMS – VXWORKS OS “URGENT/11” IMPACTSee security bulletinSee security bulletinDec 19, 2020Mar 08, 2022
HighCCX - UI DOES NOT PROPERLY RESTRICT USERSee security bulletinSee security bulletinJan 22, 2020Mar 08, 2022
MediumHDX - DISABLE TLS 1.0See security bulletinSee security bulletinMar 09, 2020Mar 08, 2022
MediumSTUDIO - LOGGING OF EXCESSIVE DATASee security bulletinSee security bulletinJun 26, 2020Mar 08, 2022
HighPOLY SYSTEMS - KNOB AND BIAS BLUETOOTH IMPACTSee security bulletinSee security bulletinJul 21, 2020Mar 08, 2022
CriticalRealPresence Resource Manager - Netlogon ImpactSee security bulletinSee security bulletinSep 24, 2020Mar 08, 2022
MediumPoly Systems - SIP Provisioning AttacksSee security bulletinSee security bulletinFeb 24, 2021Mar 09, 2022
HighCX5500 - IMPROPER NEUTRALIZATION OF SPECIAL ELEMENTS USED IN AN OS COMMANDSee security bulletinSee security bulletinSep 07, 2021Mar 09, 2022
HighPlantronics Hub - Improper Access ControlSee security bulletinSee security bulletinJun 10, 2021Mar 09, 2022
HighPOLY SYSTEMS – SOLAR WINDS IMPACTSee security bulletinSee security bulletinJan 20, 2021Mar 09, 2022
MediumPOLY ZTP - EXPOSURE OF SENSITIVE INFORMATION TO AN UNAUTHORIZED ACTORSee security bulletinSee security bulletinFeb 22, 2021Mar 10, 2022
MediumUC SOFTWARE - EXPOSURE OF SENSITIVE INFORMATION TO AN UNAUTHORIZED ACTORSee security bulletinSee security bulletinFeb 22, 2021Mar 10, 2022
MediumUC SOFTWARE - EXPOSURE OF SENSITIVE INFORMATION TO AN UNAUTHORIZED ACTORSee security bulletinSee security bulletinApr 29, 2021Mar 10, 2022
HighAMI UEFI Firmware March 2022 Security Updates
HPSBHF03779
CVE-2021-0490
Mar 11, 2022Mar 11, 2022
MediumPOLY SYSTEMS - H323 AND SIP AES ENCRYPTION IMPACTSee security bulletinSee security bulletinFeb 03, 2016Mar 11, 2022
MediumGROUP SERIES - EXPOSURE OF SENSITIVE SYSTEM INFORMATION TO AN UNAUTHORIZED CONTROL SPHERESee security bulletinSee security bulletinJun 23, 2015Mar 11, 2022
HighUC SOFTWARE - IMPROPER LIMITATION OF A PATHNAME TO A RESTRICTED DIRECTORY ('PATH TRAVERSAL')See security bulletinSee security bulletinDec 09, 2015Mar 11, 2022
HighPOLY SYSTEMS DIRTY COW LINUX KERNEL IMPACTSee security bulletinSee security bulletinOct 26, 2016Mar 11, 2022
MediumPOLY SYSTEMS - DROWN IMPACTSee security bulletinSee security bulletinMar 08, 2016Mar 11, 2022
CriticalPOLY SYSTEMS - GHOST IMPACTSee security bulletinSee security bulletinJan 29, 2015Mar 11, 2022
HighRPCS/RPMS APPLIANCESSee security bulletinSee security bulletinDec 16, 2015Mar 11, 2022
HighHDX - IMPROPER NEUTRALIZATION OF INPUT DURING WEB PAGE GENERATION & CROSS-SITE REQUEST FORGERYSee security bulletinSee security bulletinJun 29, 2016Mar 11, 2022
---Polycom Systems - Leap Second ImpactSee security bulletinSee security bulletinJun 15, 2015Mar 11, 2022
HighPOLY SYSTEMS - TOMCAT DENIAL OF SERVICE IMPACTSee security bulletinSee security bulletinJun 17, 2015Mar 11, 2022
HighGROUP SERIES - INSUFFICIENT ENTROPYSee security bulletinSee security bulletinJun 23, 2015Mar 11, 2022
HighPOLY SYSTEMS - GNU GLIBC DNS IMPACTSee security bulletin
CVE-2016-0800
Feb 23, 2016Mar 11, 2022
HighHDX - IMPROPER RESTRICTION OF XML EXTERNAL ENTITY REFERENCESee security bulletinSee security bulletinJun 29, 2016Mar 11, 2022
HighRPRM - Multiple VulnerabilitiesSee security bulletinSee security bulletinJun 26, 2015Mar 11, 2022
HighGROUP SERIES - EXECUTION WITH UNNECESSARY PRIVILEGESSee security bulletinSee security bulletinJun 23, 2015Mar 11, 2022
MediumIntel® Graphics Drivers November 2021 Security Update
HPSBHF03755
CVE-2021-0121, CVE-2021-0120
Nov 09, 2021Mar 14, 2022
HighPOLY SYSTEMS - BLUEBORNE IMPACTSee security bulletinSee security bulletinSep 25, 2017Mar 14, 2022
--- UC Software - Improper Restriction of Operations within the Bounds of a Memory BufferSee security bulletinSee security bulletinSep 13, 2017Mar 14, 2022
High RealPresence WebSuite - Exposure of Private Personal Information to an Unauthorized ActorSee security bulletin
CVE- 2018-12592
Jun 18, 2018Mar 14, 2022
HighQDX 6000 - IMPROPER NEUTRALIZATION OF INPUT DURING WEB PAGE GENERATION & CROSS-SITE REQUEST FORGERYSee security bulletinSee security bulletinMar 02, 2018Mar 14, 2022
MediumPOLY SYSTEMS - MICROSOFT O365 TLS VERSION SUPPORTSee security bulletinSee security bulletinJul 05, 2018Mar 14, 2022
MediumTrio Devices - Incorrect Permission Assignment for Critical ResourceSee security bulletinSee security bulletinNov 01, 2018Mar 14, 2022
MediumRealPresence Debut - Multiple Web UI VulnerabilitiesSee security bulletinSee security bulletinMay 10, 2018Mar 14, 2022
MediumHDX - OMNI BOTNETSee security bulletinSee security bulletinAug 08, 2018Mar 14, 2022
CriticalMULTIPLE VIDEO CONFERENCING PRODUCTS - IMPROPER RESTRICTION OF OPERATIONS WITHIN THE BOUNDS OF A MEMORY BUFFERSee security bulletinSee security bulletinNov 01, 2018Mar 14, 2022
MediumPOLY SYSTEMS - SPECTRE AND MELTDOWNSee security bulletinSee security bulletinJul 12, 2018Mar 14, 2022
---UC Software - Exposure of Sensitive Information to an Unauthorized ActorSee security bulletinSee security bulletinJun 25, 2018Mar 14, 2022
CriticalPOLY SYSTEMS - APACHE STRUTS IMPACTSee security bulletinSee security bulletinMar 21, 2017Mar 14, 2022
MediumHDX - IMPROPER NEUTRALIZATION OF SPECIAL ELEMENTS USED IN AN OS COMMANDSee security bulletinSee security bulletinOct 16, 2017Mar 14, 2022
HighPOLY SYSTEMS - WANNACRY IMPACTSee security bulletinSee security bulletinMay 16, 2017Mar 14, 2022
Medium Trio Devices - Improper Neutralization of Input During Web Page GenerationSee security bulletinSee security bulletinSep 13, 2018Mar 14, 2022
MediumUC SOFTWARE - WEAK ENCODING FOR PASSWORDSee security bulletinSee security bulletinJun 25, 2018Mar 14, 2022
MediumHDX - IMPROPER NEUTRALIZATION OF SPECIAL ELEMENTS USED IN AN OS COMMANDSee security bulletinSee security bulletinNov 15, 2017Mar 14, 2022
CriticalPOLY SYSTEMS - SAMBA AND SAMBACRY IMPACTSee security bulletinSee security bulletinSep 13, 2022Mar 14, 2022
HighAMD Client UEFI Firmware November 2022 Security Update
HPSBHF03826
CVE-2020-12930, CVE-2020-12931, CVE-2021-26391, CVE-2021-26392, CVE-2021-26393
Dec 14, 2022Mar 17, 2022
---HPSBHF03717 rev. 3 - Intel® Ethernet Controllers February 2021 Security UpdatesSee Title HPSB #See security bulletinFeb 06, 2021Mar 17, 2022
---HPSBHF03701 rev. 2 - Intel® Ethernet 700 Series Controller November 2020 Security UpdateSee Title HPSB #See security bulletinNov 06, 2020Mar 17, 2022
MediumIntel® Ethernet November 2021 Security Update
HPSBHF03751
CVE-2021-0200, CVE-2021-0197, CVE-2021-0198, CVE-2021-0199
Nov 09, 2021Mar 21, 2022
HighHP Workstation BIOS February 2022 Security Update
HPSBHF03770
CVE-2021-3661
Feb 08, 2022Apr 08, 2022
MediumNVIDIA® GPU Display Driver February 2022 Security Updates
HPSBHF03773
CVE-2022-21813, CVE-2022-21814, CVE-2022-21815
Feb 10, 2022Apr 14, 2022
HighIntel Wireless Wi-Fi February 2022 Security Update
HPSBHF03768
CVE-2021-0162, CVE-2021-0163, CVE-2021-33113, CVE-2021-33115, CVE-2021-0161, CVE-2021-0164, CVE-2021-0165, CVE-2021-0066, CVE-2021-0166, CVE-2021-0167, CVE-2021-0169, CVE-2021-0168, CVE-2021-0170, CVE-2021-0171, CVE-2021-0172, CVE-2021-0173, CVE-2021-0174, CVE-2021-0175, CVE-2021-0076, CVE-2021-0176, CVE-2021-33114, CVE-2021-0177, CVE-2021-0178, CVE-2021-0179, CVE-2021-0183, CVE-2021-0072
Feb 08, 2022May 20, 2022
MediumQualcomm and Mediatek Wireless Bluetooth April 2022 Security Updates
HPSBHF03786
CVE-2021-34147, CVE-2021-28136, CVE-2021-31610, CVE-2021-34143, CVE-2021-34146, CVE-2021-34149
Apr 14, 2022Jun 07, 2022
MediumSynaptics Fingerprint SGX-enabled Driver June 2022 Security Update
HPSBHF03797
CVE-2021-3675
Jun 14, 2022Jun 15, 2022
MediumHP ThinPro OS - File System Unlocked in HP ThinPro 7.2 Service Pack 8 (SP8)
HPSBHF03789
CVSS-2022-1602
Jun 16, 2022Jun 16, 2022
CriticalInsyde UEFI Firmware February 2022 Security Updates
HPSBHF03778
See security bulletinMar 04, 2022Jun 24, 2022
HighIntel® MEBx Firmware February 2022 Security Updates
HPSBHF03771
CVE-2021-33107
Feb 08, 2022Jun 27, 2022
---HPSBPI03688 rev. 3 - Certain HP Printer and MFP products - Cross-Site Scripting (XSS)See Title HPSB #See security bulletinSep 17, 2020Jul 08, 2022
MediumHP Wolf Security Software July 2022 Update
HPSBHF03798
CVE-2022-23825, CVE-2022-29900, CVE-2022-28693, CVE-2022-29901
Jul 12, 2022Jul 13, 2022
HighHP PC UEFI Secure Boot Database Update July 2022
HPSBHF03799
CVE-2020-25632, CVE-2021-20233, CVE-2020-25647, CVE-2020-27779, CVE-2020-7205, CVE-2020-27749, CVE-2021-20225
Jul 21, 2022Jul 21, 2022
HighHP Jumpstart Escalation of Privilege
HPSBHF03791
CVE-2022-1038
May 10, 2022Jul 21, 2022
MediumIntel® Wireless Bluetooth® and Killer™ Bluetooth® February 2022 Security Updates
HPSBHF03769
CVE-2021-33139, CVE-2021-33155, CVE-2021-33110
Feb 08, 2022Aug 01, 2022
MediumIntel 2022.2 IPU BIOS Security Updates
HPSBHF03804
CVE-2022-21233
Aug 09, 2022Aug 09, 2022
CriticalHP Security Manager, Web Jetadmin, Digital Sending Software, and Easy Printer Manager - Potential XXE-based attacks
HPSBPI03764
CVE-2018-1285
Jan 31, 2022Aug 09, 2022
MediumIntel® Ethernet Controllers August 2022 Security Update
HPSBHF03800
CVE-2021-33126
Aug 09, 2022Aug 30, 2022
HighIntel 2021.2 IPU – BIOS November 2021 Security Updates
HPSBHF03756
CVE-2021-0157, CVE-2021-0158, CVE-2021-0146
Nov 09, 2021Aug 30, 2022
HighPrivilege escalation in HP Support Assistant
HPSBHF03809
CVE-2022-38395
Sep 06, 2022Sep 09, 2022
HighCertain HP print products with Wi-Fi - Potential remote code execution, denial of service
HPSBPI03782
CVE-2021-27803
Mar 23, 2022Sep 13, 2022
CriticalCertain HP LaserJet, LaserJet Managed, PageWide, PageWide Managed printers - Potential buffer overflow
HPSBPI03749
CVE-2021-39238
Nov 01, 2021Sep 13, 2022
CriticalCertain HP Print Products – Potential information disclosure, denial of service, remote code execution
HPSBPI03781
CVE-2022-24291, CVE-2022-24292, CVE-2022-24293
Mar 21, 2022Sep 13, 2022
CriticalTRIO 8800 - IMPROPER CONTROL OF GENERATION OF CODESee security bulletinSee security bulletinSep 16, 2022Sep 16, 2022
MediumRPRM - IMPROPER RESTRICTION OF XML EXTERNAL ENTITY REFERENCESee security bulletinSee security bulletinSep 16, 2022Sep 16, 2022
MediumTRIO 8800 - UNCONTROLLED RESOURCE CONSUMPTIONSee security bulletinSee security bulletinSep 16, 2022Sep 16, 2022
HighHP PC BIOS - May 2022 Security Updates
HPSBHF03788
CVE-2021-3808, CVE-2021-3809
May 10, 2022Sep 28, 2022
HighIntel 2021.2 IPU - BIOS Firmware February 2022 Security Updates
HPSBHF03767
CVE-2021-0103, CVE-2021-0114, CVE-2021-0115, CVE-2021-0116, CVE-2021-0117, CVE-2021-0118, CVE-2021-0099, CVE-2021-0156, CVE-2021-0111, CVE-2021-0107, CVE-2021-0125, CVE-2021-0145, CVE-2021-0124, CVE-2021-0119, CVE-2021-0127, CVE-2021-0092, CVE-2021-33120, CVE-2021-0091, CVE-2021-0093
Feb 08, 2022Sep 29, 2022
HighNVIDIA GPU Display Driver May 2022 Security Update
HPSBHF03795
CVE-2022-28181, CVE-2022-28182, CVE-2022-28183, CVE-2022-28184, CVE-2022-28185, CVE-2022-28186, CVE-2022-28187, CVE-2022-28188, CVE-2022-28189, CVE-2022-28190
Jun 02, 2022Oct 03, 2022
MediumCertain HP Print Products, Digital Sender Products - Potential information disclosure
HPSBPI03763
See security bulletinJan 27, 2022Oct 05, 2022
MediumAMD® Chipset Driver September 2021 Security Update
HPSBHF03745
CVE-2021-26333
Sep 15, 2021Oct 17, 2022
CriticalPoly Systems - OpenSSL 3.X Vulnerabilities ImpactSee security bulletin
CVE-2022-3786, CVE-2022-3602
Nov 03, 2022Nov 03, 2022
HighAMD Graphics Driver November 2022 Security Update
HPSBHF03816
CVE-2020-12930, CVE-2020-12931, CVE-2021-26360, CVE-2021-26391, CVE-2021-26392, CVE-2021-26393
Nov 08, 2022Nov 08, 2022
MediumCertain HP ENVY, OfficeJet, DeskJet printers - Potential denial of service
HPSBPI03813
CVE-2022-43780
Oct 26, 2022Nov 14, 2022
HighIntel® PROSet/Wireless WiFi and Killer™ WiFi August 2022 Security Update
HPSBHF03801
CVE-2022-21181, CVE-2021-37409, CVE-2021-23223, CVE-2021-23168, CVE-2021-44545, CVE-2021-26254, CVE-2022-21172, CVE-2022-21240, CVE-2022-21139, CVE-2022-21197, CVE-2022-21160, CVE-2021-23188, CVE-2022-21212, CVE-2022-21140
Aug 09, 2022Nov 14, 2022
HighIntel® Wireless Bluetooth® and Killer™ Bluetooth® August 2022 Security Update
HPSBHF03802
CVE-2021-33847, CVE-2021-26257, CVE-2021-26950, CVE-2021-23179
Aug 09, 2022Nov 14, 2022
HighIntel 2022.1 IPU - Intel® Boot Guard and Intel® TXT Security Updates
HPSBHF03793
CVE-2022-0004
May 10, 2022Nov 17, 2022
HighIntel 2022.1 IPU BIOS Security Updates
HPSBHF03790
CVE-2021-0153, CVE-2021-0154, CVE-2021-0190, CVE-2021-33123, CVE-2021-33122, CVE-2021-0189, CVE-2021-33103, CVE-2021-33124, CVE-2021-0159, CVE-2021-0188, CVE-2022-21151, CVE-2022-0005, CVE-2021-0155, CVE-2022-21131, CVE-2022-21136
May 10, 2022Nov 17, 2022
MediumIntel® Processors June 2022 Security Update
HPSBHF03796
CVE-2022-21123, CVE-2022-21127, CVE-2022-21125, CVE-2022-21166
Jun 14, 2022Nov 17, 2022
HighCertain HP Print Products, Digital Sending Products - Potential remote code execution and buffer overflow
HPSBPI03780
CVE-2021-3942
Mar 21, 2022Nov 22, 2022
HighHP UEFI Firmware February 2022 Security Updates
HPSBHF03765
CVE-2021-39298, CVE-2021-39297, CVE-2021-39299, CVE-2021-39300, CVE-2021-39301
Feb 02, 2022Dec 01, 2022
HighHP PC BIOS February 2022 Security Updates for 11 Vulnerabilities
HPSBHF03776
CVE-2022-23932, CVE-2022-23933, CVE-2022-23924, CVE-2022-23925, CVE-2022-23930, CVE-2022-23931, CVE-2022-23934, CVE-2022-23926, CVE-2022-23927, CVE-2022-23928, CVE-2022-23929
Mar 08, 2022Dec 02, 2022
HighHP PC BIOS February 2022 Security Update
HPSBHF03775
CVE-2022-23956, CVE-2022-23953, CVE-2022-23954, CVE-2022-23955, CVE-2022-23957, CVE-2022-23958
Feb 28, 2022Dec 02, 2022
HighAMD Client UEFI Firmware May 2022 Security Updates
HPSBHF03792
CVE-2021-26317, CVE-2021-26335, CVE-2021-39298, CVE-2021-26373, CVE-2020-12946, CVE-2021-26361, CVE-2021-26363, CVE-2021-26366, CVE-2021-26369, CVE-2021-26386, CVE-2021-26336, CVE-2021-26337, CVE-2020-12951, CVE-2021-26376, CVE-2021-26352, CVE-2021-26375, CVE-2021-26378, CVE-2021-26372, CVE-2021-26351, CVE-2021-26390, CVE-2021-26362, CVE-2021-26339, CVE-2020-12944, CVE-2021-26368, CVE-2021-26388, CVE-2021-26312, CVE-2021-26384, CVE-2021-26382
May 10, 2022Dec 06, 2022
HighPrivilege escalation via HPSFViewer
HPSBHF03821
CVE-2022-3990
Dec 06, 2022Dec 06, 2022
HighIntel SSD Firmware May 2022 Security Updates
HPSBHF03787
CVE-2021-33078, CVE-2021-33077, CVE-2021-33080, CVE-2021-33074, CVE-2021-33069, CVE-2021-33075, CVE-2021-33083, CVE-2021-33082
May 10, 2022Dec 13, 2022
HighHyperX NGENUITY - Potential Elevation of Privilege
HPSBHF03825
CVE-2021-42834
Dec 15, 2022Dec 15, 2022
HighUC Software - Heap Based Buffer OverflowSee security bulletin
CVE-2022-38464
Dec 16, 2022Dec 16, 2022
HighHP PC BIOS August 2022 Additional Updates for Potential SMM and TOCTOU Vulnerabilities
HPSBHF03806
CVE-2022-31645, CVE-2022-31646, CVE-2022-27537, CVE-2022-31644
May 05, 2023Jan 05, 2023
CriticalCertain HP Print Products - Potential Buffer Overflow, Remote Code Execution
HPSBPI03810
CVE-2022-28721
Sep 21, 2022Jan 23, 2023
HighHP PC BIOS August 2022 Security Updates for Potential SMM and TOCTOU Vulnerabilities
HPSBHF03805
CVE-2022-31642, CVE-2022-31640, CVE-2022-31641
Aug 09, 2022Feb 01, 2023
HighHP PC BIOS November 2022 Security Update for Potential Stack Buffer Overflow
HPSBHF03820
CVE-2022-37018
Nov 10, 2022Feb 02, 2023
MediumIntel® PROSet/Wireless WiFi, Intel vPro® CSME WiFi, and Killer™ WiFi November 2022 Security Update
HPSBHF03817
CVE-2022-26047
Nov 08, 2022Feb 09, 2023
MediumRealtek HD Audio Driver December 2022 Security Update
HPSBHF03828
CVE-2021-32537
Dec 15, 2022Feb 28, 2023
HighNVIDIA® GPU Display Driver November 2022 Security Update
HPSBHF03832
CVE-2022-34669, CVE-2022-34671, CVE-2022-34672, CVE-2022-42267, CVE-2022-34678, CVE-2022-34681, CVE-2022-34683, CVE-2022-42266
Jan 20, 2023Mar 02, 2023
MediumHP PC BIOS October 2022 PCR Measurement Update
HPSBHF03812
CVE-2022-31643
Oct 19, 2022Mar 06, 2023
HighIntel® XMM™ 7560 Modem November 2022 Security Update
HPSBHF03815
CVE-2022-26513, CVE-2022-27874, CVE-2022-28611, CVE-2022-26369, CVE-2022-28126, CVE-2022-26367, CVE-2022-26079, CVE-2022-27639, CVE-2022-26045
Nov 08, 2022Mar 06, 2023
HighIntel 2022.3 IPU - Chipset Firmware November 2022 Security Update
HPSBHF03818
CVE-2022-26845, CVE-2022-27497, CVE-2022-29893, CVE-2021-33159
Nov 09, 2022Mar 15, 2023
HighIntel 2022.3 IPU - BIOS November 2022 Security Update
HPSBHF03819
CVE-2022-26006, CVE-2022-21198
Nov 09, 2022Mar 15, 2023
MediumIntel® Integrated Sensor Solution February 2023 Security Update
HPSBHF03833
CVE-2022-30339
Feb 14, 2023Mar 17, 2023
HighNVIDIA GPU Display Driver August 2022 Security Update
HPSBHF03811
CVE-2022-31606, CVE-2022-31607, CVE-2022-31608, CVE-2022-31610, CVE-2022-31617, CVE-2022-31612, CVE-2022-31613, CVE-2022-34665, CVE-2022-34666, CVE-2022-31616, CVE-2022-31615
Oct 12, 2022Mar 20, 2023
HighAMD Client UEFI Firmware January 2023 Security Updates
HPSBHF03831
CVE-2021-26316, CVE-2021-26346, CVE-2021-46795
Jan 10, 2023Mar 20, 2023
HighIntel® RST Software August 2022 Security Update
HPSBHF3803
CVE-2018-1285
Aug 09, 2022Mar 22, 2023
HighInsyde UEFI Firmware March 2023 Security Update (TOCTOU)
HPSBHF03836
CVE-2022-34325, CVE-2022-33905, CVE-2022-33908, CVE-2022-33909, CVE-2022-33983, CVE-2022-33984, CVE-2022-33985, CVE-2022-33906, CVE-2022-33907, CVE-2022-33982, CVE-2022-33986, CVE-2022-30773, CVE-2022-30774, CVE-2022-31243, CVE-2022-32266, CVE-2022-32267
Mar 21, 2023Mar 22, 2023
HighHP PC BIOS December 2022 Security Update (TOCTOU)
HPSBHF03827
CVE-2022-27538
Dec 14, 2022Apr 10, 2023
MediumIntel Unite® Client Software May 2023 Security Update
HPSBHF03845
CVE-2022-33963
May 09, 2023May 09, 2023
HighIntel® Virtual RAID on CPU (VROC) May 2023 Security Update
HPSBHF03844
CVE-2022-29919, CVE-2022-30338, CVE-2022-29508, CVE-2022-25976
May 09, 2023May 09, 2023
HighCertain HP LaserJet, PageWide Pro Print Products - Potential Heap Overflow, Remote Code Execution
HPSBPI03841
CVE-2023-27973
Apr 06, 2023May 10, 2023
HighHP PC BIOS February 2023 Security Update (TOCTOU)
HPSBHF03835
CVE-2022-27539, CVE-2022-27541, CVE-2022-43777, CVE-2022-43778
Feb 21, 2023May 15, 2023
HighHP PC BIOS November 2022 Security Updates for Potential TOCTOU Vulnerabilities
HPSBHF03814
CVE-2022-31635, CVE-2022-31636, CVE-2022-31637, CVE-2022-31638, CVE-2022-31639
Nov 08, 2022May 17, 2023
HighNVIDIA® GPU Display Driver March 2023 Security Update
HPSBHF03843
CVE-2023-0184, CVE-2023-0182, CVE-2023-0181, CVE-2023-0191, CVE-2023-0187, CVE-2023-0199, CVE-2023-0186, CVE-2023-0188, CVE-2023-0192, CVE-2023-0194, CVE-2023-0195
May 04, 2023May 23, 2023
MediumCertain DesignJet and PageWide XL products - Potential information disclosure
HPSBPI03837
CVE-2023-1526
Mar 27, 2023May 23, 2023
HighAMI UEFI Firmware December 2022 Security Update (TOCTOU)
HPSBHF03829
CVE-2022-43779
Dec 16, 2022Jun 08, 2023
CriticalCertain HP Enterprise LaserJet MFP Products – Potential Buffer Overflow, Remote Code Execution
HPSBPI03849
CVE-2023-1329
Jun 12, 2023Jun 12, 2023
CriticalCertain HP Enterprise LaserJet and HP LaserJet Managed printers - Potential information disclosure
HPSBPI03838
CVE-2023-1707
Apr 03, 2023Jun 12, 2023
HighIntel 2023.1 IPU – BIOS February 2023 Security Updates
HPSBHF03834
CVE-2022-26343, CVE-2022-32231, CVE-2022-26837, CVE-2022-30704, CVE-2022-38090
Feb 14, 2023Jun 20, 2023
HighAMI UEFI Firmware June 2023 Security Update (TOCTOU)
HPSBHF03850
CVE-2023-26299
Jun 20, 2023Jun 20, 2023
HighCertain HP LaserJet Pro Print Products – Potential Buffer Overflow and/or Denial of Service
HPSBPI03852
CVE-2023-35176
Jun 22, 2023Jun 22, 2023
HighCertain HP LaserJet Pro Print Products - Potential Buffer Overflow
HPSBPI03853
CVE-2023-35177
Jun 22, 2023Jun 22, 2023
HighCertain HP LaserJet Pro Print Products - Potential Remote Code Execution, Information Disclosure
HPSBPI03851
CVE-2023-35175
Jun 22, 2023Jun 22, 2023
HighCertain HP LaserJet Pro Print Products - Potential Buffer Overflow
HPSBPI03854
CVE-2023-35178
Jun 22, 2023Jun 22, 2023
MediumVVX 410 / VVX 411 - MULTIPLE VULNERABILITIESSee security bulletinSee security bulletinJun 27, 2023Jun 27, 2023
MediumCertain HP Print Products, Digital Sending products - Potential denial of service vulnerability
HPSBPI03808
CVE-2022-0778
Aug 30, 2022Jun 28, 2023
HighCertain HP ENVY, LaserJet, OfficeJet, PageWide Pro Print Products - Potential Buffer Overflow, Remote Code Execution
HPSBPI03840
CVE-2023-27972
Apr 06, 2023Jul 19, 2023
HighCertain HP ENVY, LaserJet, OfficeJet, PageWide Pro print products - Potential Buffer Overflow, Elevation of Privilege
HPSBPI03839
CVE-2023-27971
Apr 06, 2023Jul 19, 2023
HighCertain HP LaserJet Pro print products - Potential elevation of privilege and/or information disclosure
HPSBPI03855
CVE-2023-26301
Jul 20, 2023Jul 20, 2023
HighHP Security Manager and Web Jetadmin - Potential remote code execution
HPSBPI03856
CVE-2022-29143, CVE-2021-1636
Jul 20, 2023Jul 20, 2023
HighCertain HP and Samsung printer software - Potential elevation of privileges
HPSBPI03857
CVE-2022-4894
Aug 02, 2023Aug 02, 2023
HighAMD® Ryzen Master™ SDK February 2023 Security Update
HPSBHF03865
CVE-2022-27677
Aug 08, 2023Aug 08, 2023
HighIntel® Unite® Hub Software August 2023 Security Update
HPSBHF03861
CVE-2023-25773
Aug 08, 2023Aug 08, 2023
---Poly Systems - Microsoft Azure Active Directory Privilege Escalation ImpactSee security bulletinSee security bulletinAug 14, 2023Aug 14, 2023
HighAMD Client UEFI Firmware May 2023 Security Update
HPSBHF03846
CVE-2020-12930, CVE-2020-12931, CVE-2021-26354, CVE-2021-26371, CVE-2021-26391, CVE-2021-26392, CVE-2021-46773, CVE-2021-46756, CVE-2021-46753, CVE-2021-46754, CVE-2021-26365, CVE-2021-26356, CVE-2021-26393, CVE-2021-26406, CVE-2021-46749, CVE-2021-46755, CVE-2021-46792, CVE-2021-46794, CVE-2021-46765, CVE-2021-46759
May 09, 2023Sep 21, 2023
MediumDMA – Improper Neutralization of Special Elements Used in an OS CommandSee security bulletin
CVE-2023-28880
Sep 11, 2023Sep 25, 2023
HighHP LIFE Android Mobile – Potential Escalation of Privilege, Information Disclosure
HPSBGN03870
CVE-2023-5365
Oct 06, 2023Oct 06, 2023
HighHP t430 and t638 Thin Clients - Firmware Tampering Vulnerability
HPSBHF03873
CVE-2023-5409
Oct 13, 2023Oct 13, 2023
MediumCertain HP Displays - Theft Deterrence
HPSBHF03871
CVE-2023-5449
Oct 12, 2023Oct 13, 2023
MediumHP ThinUpdate - Improper Certificate Validation
HPSBHF03872 Rev. 1
CVE-2023-4499
Oct 13, 2023Oct 13, 2023
HighIntel 2023.2 IPU – BIOS May 2023 Security Update
HPSBHF03847
CVE-2022-33894, CVE-2022-38087
May 09, 2023Oct 16, 2023
HighCertain HP PC products - BIOS Password Unlock
HPSBHF03874
CVE-2023-26300
Oct 17, 2023Oct 17, 2023
HighIntel 2023.3 IPU – BIOS August 2023 Security Updates
HPSBHF03859
CVE-2022-37343, CVE-2022-44611, CVE-2022-40982, CVE-2022-38083, CVE-2022-27879, CVE-2022-43505
Aug 08, 2023Oct 17, 2023
CriticalHP Device Manager Security Updates
HPSBHF03876
CVE-2023-21930, CVE-2023-21939, CVE-2023-21954, CVE-2023-3823, CVE-2023-3824, CVE-2023-3247, CVE-2023-4807, CVE-2023-3817, CVE-2023-3446, CVE-2023-2975, CVE-2023-2650, CVE-2023-1255, CVE-2023-0466, CVE-2023-0465, CVE-2023-0464, CVE-2023-4304, CVE-2020-10683, CVE-2018-1000632, CVE-2014-0114, CVE-2019-10086, CVE-2020-9548, CVE-2020-9547, CVE-2020-9546, CVE-2020-8840, CVE-2019-20330, CVE-2019-17531, CVE-2019-17267, CVE-2019-16943, CVE-2019-16942, CVE-2019-16335, CVE-2019-14893, CVE-2019-14892, CVE-2019-14540, CVE-2019-14379, CVE-2018-7489, CVE-2018-19362, CVE-2018-19361, CVE-2018-19360, CVE-2018-14721, CVE-2018-14720, CVE-2018-14719, CVE-2018-14718, CVE-2018-11307, CVE-2017-17485, CVE-2022-42003, CVE-2021-20190, CVE-2020-36518, CVE-2020-36189, CVE-2020-36188, CVE-2020-36187, CVE-2020-36186, CVE-2020-36185, CVE-2020-36184, CVE-2020-36183, CVE-2020-36182, CVE-2020-36181, CVE-2020-36180, CVE-2020-36179, CVE-2020-35728, CVE-2020-35491, CVE-2020-35490, CVE-2020-25649, CVE-2020-24750, CVE-2020-24616, CVE-2020-14195, CVE-2020-14062, CVE-2020-14061, CVE-2020-14060, CVE-2020-11620, CVE-2020-11619, CVE-2020-11113, CVE-2020-11112, CVE-2020-11111, CVE-2020-10969, CVE-2020-10968, CVE-2020-10673, CVE-2020-10672, CVE-2020-10650, CVE-2019-14439, CVE-2019-12086, CVE-2018-5968, CVE-2018-12023, CVE-2018-12022
Oct 20, 2023Oct 20, 2023
HighPotential Escalation of Privilege in HP Factory Preinstalled Windows 10 20H2 Images
HPSBHF03830
CVE-2022-38396
Feb 02, 2023Oct 24, 2023
HighHP Print and Scan Doctor for Windows - Potential Escalation of Privilege
HPSBHF03875
CVE-2023-5671
Oct 24, 2023Oct 24, 2023
HighNVIDIA GPU Display Driver June 2023 Security Updates
HPSBHF03867
CVE-2022-34671, CVE‑2023‑25515
Sep 11, 2023Oct 25, 2023
HighHP PC Hardware Diagnostics Windows, HP Image Assistant, and HP Thunderbolt Dock G2 Firmware – Potential Buffer Overflow, Elevation of Privilege
HSPBHF03848 Rev. 2
CVE-2023-32673, CVE-2023-32674, CVE-2023-5739
May 11, 2023Oct 30, 2023
HighIntel 2023.3 IPU – Chipset Firmware August 2023 Security Update
HPSBHF03860
CVE-2022-36392, CVE-2022-38102, CVE-2022-29871
Aug 08, 2023Oct 30, 2023
HighHP PC BIOS September 2023 Security Updates for OpenSSL
HPSBHF03866
CVE-2022-0778, CVE-2021-23840, CVE-2020-1967, CVE-2021-23841, CVE-2020-1971
Sep 05, 2023Nov 02, 2023
MediumAMD Client UEFI DXE Driver Memory Leaks September 2023 Security Update
HPSBHF03864
CVE-2023-20594, CVE-2023-20597
Sep 21, 2023Nov 03, 2023
HighAMD Client UEFI Firmware August 2023 Security Update
HPSBHF03863
CVE-2023-20555
Aug 08, 2023Nov 03, 2023
MediumIntel Dynamic Tuning Technology Software August 2023 Security Update
HPSBHF03877
CVE-2022-29470
Nov 06, 2023Nov 07, 2023
MediumIntel Chipset Device Software November 2023 Security Update
HPSBHF03880
CVE-2023-28388
Nov 20, 2023Nov 20, 2023
HighAMD Ryzen Master™ SDK August 2023 Security Update
HPSBHF03868
CVE-2023-20564, CVE-2023-20560
Nov 20, 2023Nov 20, 2023
HighIntel Connectivity Performance Suite November 2023 Security Update
HPSBHF03883
CVE-2023-32279
Nov 20, 2023Nov 20, 2023
MediumIntel Rapid Storage Technology Software November 2023 Security Update
HPSBHF03884
CVE-2023-39230
Nov 20, 2023Nov 20, 2023
HighIntel® PROSet/Wireless WiFi and Killer™ WiFi August 2023 Security Update
HPSBHF03858
CVE-2022-27635, CVE-2022-46329, CVE-2022-40964, CVE-2022-36351, CVE-2022-38076
Aug 08, 2023Nov 20, 2023
HighIntel® Virtual RAID on CPU (VROC) August 2023 Security Updates
HPSBHF03862
CVE-2022-45112
Nov 20, 2023Nov 20, 2023
MediumIntel Extreme Tuning Utility (XTU) November 2023 Security Update
HPSBHF03886
CVE-2023-34350
Nov 20, 2023Nov 20, 2023
MediumIntel Optane™ SSD Firmware November 2023 Security Update
HPSBHF03882
CVE-2023-24587, CVE-2023-27519, CVE-2023-27879, CVE-2023-27306, CVE-2023-24588
Nov 20, 2023Nov 20, 2023
MediumIntel Graphics Drivers November 2023 Security Update
HPSBHF03879
CVE-2023-29165, CVE-2023-27305, CVE-2023-25952
Nov 20, 2023Nov 20, 2023
MediumAMD Graphics Driver November 2023 Security Update
HPSBHF03885
CVE-2023-20568, CVE-2023-20567, CVE-2023-31320, CVE-2021-46748
Nov 21, 2023Nov 21, 2023
---June 2022 Product Shipping Configuration Change Notice For Poly VVX PhonesSee security bulletinSee security bulletin
---UC SOFTWARE - IMPROPER NEUTRALIZATION OF INPUT DURING WEB PAGE GENERATION & CROSS-SITE REQUEST FORGERYSee security bulletinSee security bulletin
MediumCertain HP Enterprise LaserJet, LaserJet Managed printers - Potential denial of service, potential Cross Site Scripting (XSS)
HPSBPI03869
CVE-2021-41182 , CVE-2021-41183, CVE-2021-41184, CVE-2023-5113
Oct 04, 2023
CriticalBASH SHELL ARBITRARY CODE EXECUTION ON VARIOUS POLYCOM PRODUCTSSee security bulletinSee security bulletinOct 24, 2014