CVE-2019-6321
Summary
| CVE | CVE-2019-6321 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2019-05-29 20:29:00 UTC |
| Updated | 2020-08-24 17:37:00 UTC |
| Description | HP has identified a security vulnerability with some versions of Workstation BIOS (UEFI Firmware) where the runtime BIOS code could be tampered with if the TPM is disabled. This vulnerability relates to Workstations whose TPM is disabled by default. |
Risk And Classification
Problem Types: CWE-667
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Hp | Z4 G4 Core-x Workstation | - | All | All | All |
| Hardware | Hp | Z4 G4 Core-x Workstation | - | All | All | All |
| Operating System | Hp | Z4 G4 Core-x Workstation Firmware | All | All | All | All |
| Operating System | Hp | Z4 G4 Core-x Workstation Firmware | All | All | All | All |
| Operating System | Hp | Z4 G4 Core-x Workstation Firmware | All | All | All | All |
| Operating System | Hp | Z4 G4 Core-x Workstation Firmware | All | All | All | All |
| Hardware | Hp | Z4 G4 Workstation | - | All | All | All |
| Hardware | Hp | Z4 G4 Workstation | - | All | All | All |
| Operating System | Hp | Z4 G4 Workstation Firmware | All | All | All | All |
| Operating System | Hp | Z4 G4 Workstation Firmware | All | All | All | All |
| Operating System | Hp | Z4 G4 Workstation Firmware | All | All | All | All |
| Operating System | Hp | Z4 G4 Workstation Firmware | All | All | All | All |
| Hardware | Hp | Z6 G4 Workstation | - | All | All | All |
| Hardware | Hp | Z6 G4 Workstation | - | All | All | All |
| Operating System | Hp | Z6 G4 Workstation Firmware | All | All | All | All |
| Operating System | Hp | Z6 G4 Workstation Firmware | All | All | All | All |
| Operating System | Hp | Z6 G4 Workstation Firmware | All | All | All | All |
| Operating System | Hp | Z6 G4 Workstation Firmware | All | All | All | All |
| Hardware | Hp | Z8 G4 Workstation | - | All | All | All |
| Hardware | Hp | Z8 G4 Workstation | - | All | All | All |
| Operating System | Hp | Z8 G4 Workstation Firmware | All | All | All | All |
| Operating System | Hp | Z8 G4 Workstation Firmware | All | All | All | All |
| Operating System | Hp | Z8 G4 Workstation Firmware | All | All | All | All |
| Operating System | Hp | Z8 G4 Workstation Firmware | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| HPSBHF03614 rev. 1 - Processor Registers Left Unlocked When TPM is Disabled | HP® Customer Support | HP | support.hp.com | Patch, Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.