hp-support-head-portlet

Actions
Loading...
HP Customer Support - Knowledge Base

hp-contact-secondary-navigation-portlet

Actions
Loading...

hp-share-print-widget-portlet

Actions
Loading...
  • Information
    Need Windows 11 help?

    Check the information on compatibility, upgrade, and available fixes from HP and Microsoft. Windows 11 Support Center

  • Feedback

hp-concentra-wrapper-portlet

Actions
Loading...

Intel 2023.3 IPU – BIOS August 2023 Security Updates

Intel has informed HP of potential vulnerabilities identified for some Intel® Processors and/or supporting BIOS firmware, which might allow escalation of privilege, information disclosure, or denial of service. Intel is releasing firmware updates and prescriptive guidance to mitigate these potential vulnerabilities.

Severity

High

HP Reference

HPSBHF03859 Rev. 3

Release date

August 8, 2023

Last updated

October 17, 2023

Category

PC

Potential Security Impact

Escalation of Privilege, Information Disclosure, Denial of Service

Relevant Common Vulnerabilities and Exposures (CVE) List

Reported by: Intel

List of CVE IDs

CVE ID

Base Score

Base Vector

Vendor ID

CVE-2022-37343

7.2

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N

INTEL-SA-00813

CVE-2022-44611

6.9

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:L

INTEL-SA-00813

CVE-2022-40982

6.5

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

INTEL-SA-00828

CVE-2022-38083

6.1

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:L/A:N

INTEL-SA-00813

CVE-2022-27879

5.3

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N

INTEL-SA-00813

CVE-2022-43505

4.1

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

INTEL-SA-00813

Learn more about CVSS 3.1 base metrics, which range from 0 to 10.

PSR-2023-0124

Resolution

Intel has released updates to mitigate the potential vulnerabilities. HP has identified affected platforms and corresponding SoftPaqs with minimum versions that mitigate the potential vulnerabilities. See the affected platforms listed below.

Newer versions might become available and the minimum versions listed below might become obsolete.  If a SoftPaq Link becomes invalid, check the HP Customer Support - Software and Driver Downloads site to obtain the latest update for your product model.

HP recommends keeping your system up to date with the latest firmware and software.

Note:

This bulletin might be updated when new information and/or SoftPaqs are available. Sign up for HP Subscriptions to be notified and receive:

  • Product support eAlerts

  • Driver updates

  • Security Bulletin updates

SoftPaqs and affected products

Find the SoftPaqs that resolves the vulnerability of your system.

SoftPaq Status

A status is provided if no SoftPaq is listed for a particular product.

  • Pending: SoftPaq is in progress.

  • Under investigation: System under investigation for impact, or the SoftPaq is under investigation for feasibility/availability.

  • Not available: SoftPaq not available due to technical or logistical constraints.

  • Check Support Page: The listed SoftPaq has been removed from the download site. SoftPaqs with newer versions may be available on the HP Customer Support - Software and Driver Downloads site.