CVE-2021-3661
Summary
| CVE | CVE-2021-3661 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2022-12-12 13:15:00 UTC |
| Updated | 2022-12-19 18:03:00 UTC |
| Description | A potential security vulnerability has been identified in certain HP Workstation BIOS (UEFI firmware) which may allow arbitrary code execution. HP is releasing firmware mitigations for the potential vulnerability. |
Risk And Classification
Problem Types: NVD-CWE-noinfo
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Hp | Z1 All-in-one G3 | - | All | All | All |
| Operating System | Hp | Z1 All-in-one G3 Firmware | 01.31 | All | All | All |
| Hardware | Hp | Z238 Microtower | - | All | All | All |
| Operating System | Hp | Z238 Microtower Firmware | 01.83 | All | All | All |
| Hardware | Hp | Z240 Small Form Factor | - | All | All | All |
| Operating System | Hp | Z240 Small Form Factor Firmware | 01.83 | All | All | All |
| Hardware | Hp | Z240 Tower | - | All | All | All |
| Operating System | Hp | Z240 Tower Firmware | 01.83 | All | All | All |
| Hardware | Hp | Z2 Mini G3 | - | All | All | All |
| Operating System | Hp | Z2 Mini G3 Firmware | 01.83 | All | All | All |
| Hardware | Hp | Z2 Mini G4 | - | All | All | All |
| Operating System | Hp | Z2 Mini G4 Firmware | 01.08.01 | All | All | All |
| Hardware | Hp | Z2 Mini G5 | - | All | All | All |
| Operating System | Hp | Z2 Mini G5 Firmware | 01.03.00_rev_a | All | All | All |
| Hardware | Hp | Z2 Small Form Factor G4 | - | All | All | All |
| Operating System | Hp | Z2 Small Form Factor G4 Firmware | 01.08.01 | All | All | All |
| Hardware | Hp | Z2 Small Form Factor G5 | - | All | All | All |
| Operating System | Hp | Z2 Small Form Factor G5 Firmware | 01.03.00_rev_a | All | All | All |
| Hardware | Hp | Z2 Small Form Factor G8 | - | All | All | All |
| Operating System | Hp | Z2 Small Form Factor G8 Firmware | 01.03.00_rev_a | All | All | All |
| Hardware | Hp | Z2 Tower G4 | - | All | All | All |
| Operating System | Hp | Z2 Tower G4 Firmware | 01.08.01 | All | All | All |
| Hardware | Hp | Z2 Tower G5 | - | All | All | All |
| Operating System | Hp | Z2 Tower G5 Firmware | 01.03.00_rev_a | All | All | All |
| Hardware | Hp | Z2 Tower G8 | - | All | All | All |
| Operating System | Hp | Z2 Tower G8 Firmware | 01.03.00_rev_a | All | All | All |
| Hardware | Hp | Z440 | - | All | All | All |
| Operating System | Hp | Z440 Firmware | 2.58 | All | All | All |
| Hardware | Hp | Z4 G4 | - | All | All | All |
| Operating System | Hp | Z4 G4 Firmware | 02.75 | All | All | All |
| Hardware | Hp | Z640 | - | All | All | All |
| Operating System | Hp | Z640 Firmware | 2.58 | All | All | All |
| Hardware | Hp | Z6 G4 | - | All | All | All |
| Operating System | Hp | Z6 G4 Firmware | 02.75 | All | All | All |
| Hardware | Hp | Z840 | - | All | All | All |
| Operating System | Hp | Z840 Firmware | 2.58 | All | All | All |
| Hardware | Hp | Z8 G4 | - | All | All | All |
| Operating System | Hp | Z8 G4 Firmware | 02.75 | All | All | All |
| Hardware | Hp | Zcentral 4r | - | All | All | All |
| Operating System | Hp | Zcentral 4r Firmware | 01.18 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| HP Workstation BIOS February 2022 Security Update | HP® Customer Support | MISC | support.hp.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.