{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-5410", "assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2", "state": "PUBLISHED", "assignerShortName": "hp", "dateReserved": "2023-10-04T18:22:43.127Z", "datePublished": "2024-03-12T20:01:46.531Z", "dateUpdated": "2024-11-12T20:34:15.291Z"}, "containers": {"cna": {"descriptions": [{"lang": "en", "value": "A potential security vulnerability has been reported in the system BIOS of certain HP PC products, which might allow memory tampering. HP is releasing mitigation for the potential vulnerability."}], "affected": [{"vendor": "HP Inc.", "product": "HP PC BIOS", "defaultStatus": "unknown", "versions": [{"version": "See HP Security Bulletin reference for affected versions", "status": "affected"}]}], "references": [{"url": "https://support.hp.com/us-en/document/ish_10290255-10290279-16/hpsbhf03924"}], "providerMetadata": {"orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2", "shortName": "hp", "dateUpdated": "2024-03-12T20:01:46.531Z"}, "x_generator": {"engine": "cveClient/1.0.15"}}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-203", "lang": "en", "description": "CWE-203 Observable Discrepancy"}]}], "affected": [{"vendor": "hp_inc", "product": "business_notebook_pcs", "cpes": ["cpe:2.3:o:hp_inc:business_notebook_pcs:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "1.03.01", "status": "affected", "lessThanOrEqual": "1.15.01", "versionType": "custom"}]}, {"vendor": "hp_inc", "product": "business_desktop_pcs", "cpes": ["cpe:2.3:o:hp_inc:business_desktop_pcs:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "2.12.02", "status": "affected", "lessThanOrEqual": "2.12.03", "versionType": "custom"}]}, {"vendor": "hp_inc", "product": "workstations", "cpes": ["cpe:2.3:o:hp_inc:workstations:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "2.04.02", "status": "affected"}]}, {"vendor": "hp_inc", "product": "thin_client", "cpes": ["cpe:2.3:o:hp_inc:thin_client:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "1.09.01", "status": "affected", "lessThanOrEqual": "1.15.01", "versionType": "custom"}]}], "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.2, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2024-07-23T14:04:36.871281Z", "id": "CVE-2023-5410", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-12T20:34:15.291Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T07:59:44.777Z"}, "title": "CVE Program Container", "references": [{"url": "https://support.hp.com/us-en/document/ish_10290255-10290279-16/hpsbhf03924", "tags": ["x_transferred"]}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://support.hp.com/us-en/document/ish_10290255-10290279-16/hpsbhf03924", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T07:59:44.777Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.2, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2023-5410", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-07-23T14:04:36.871281Z"}}}], "affected": [{"cpes": ["cpe:2.3:o:hp_inc:business_notebook_pcs:*:*:*:*:*:*:*:*"], "vendor": "hp_inc", "product": "business_notebook_pcs", "versions": [{"status": "affected", "version": "1.03.01", "versionType": "custom", "lessThanOrEqual": "1.15.01"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:hp_inc:business_desktop_pcs:*:*:*:*:*:*:*:*"], "vendor": "hp_inc", "product": "business_desktop_pcs", "versions": [{"status": "affected", "version": "2.12.02", "versionType": "custom", "lessThanOrEqual": "2.12.03"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:hp_inc:workstations:*:*:*:*:*:*:*:*"], "vendor": "hp_inc", "product": "workstations", "versions": [{"status": "affected", "version": "2.04.02"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:hp_inc:thin_client:*:*:*:*:*:*:*:*"], "vendor": "hp_inc", "product": "thin_client", "versions": [{"status": "affected", "version": "1.09.01", "versionType": "custom", "lessThanOrEqual": "1.15.01"}], "defaultStatus": "unknown"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-203", "description": "CWE-203 Observable Discrepancy"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-23T14:05:09.605Z"}}], "cna": {"affected": [{"vendor": "HP Inc.", "product": "HP PC BIOS", "versions": [{"status": "affected", "version": "See HP Security Bulletin reference for affected versions"}], "defaultStatus": "unknown"}], "references": [{"url": "https://support.hp.com/us-en/document/ish_10290255-10290279-16/hpsbhf03924"}], "x_generator": {"engine": "cveClient/1.0.15"}, "descriptions": [{"lang": "en", "value": "A potential security vulnerability has been reported in the system BIOS of certain HP PC products, which might allow memory tampering. HP is releasing mitigation for the potential vulnerability."}], "providerMetadata": {"orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2", "shortName": "hp", "dateUpdated": "2024-03-12T20:01:46.531Z"}}}, "cveMetadata": {"cveId": "CVE-2023-5410", "state": "PUBLISHED", "dateUpdated": "2024-11-12T20:34:15.291Z", "dateReserved": "2023-10-04T18:22:43.127Z", "assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2", "datePublished": "2024-03-12T20:01:46.531Z", "assignerShortName": "hp"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A potential security vulnerability has been reported in the system BIOS of certain HP PC products, which might allow memory tampering. HP is releasing mitigation for the potential vulnerability."}, {"lang": "es", "value": "Se ha informado de una posible vulnerabilidad de seguridad en el BIOS del sistema de ciertos productos de PC HP, que podr\u00eda permitir la manipulaci\u00f3n de la memoria. HP est\u00e1 lanzando medidas de mitigaci\u00f3n para la posible vulnerabilidad."}], "id": "CVE-2023-5410", "lastModified": "2024-11-12T21:35:13.603", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 8.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.5, "impactScore": 6.0, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2024-03-12T20:15:07.550", "references": [{"source": "hp-security-alert@hp.com", "url": "https://support.hp.com/us-en/document/ish_10290255-10290279-16/hpsbhf03924"}], "sourceIdentifier": "hp-security-alert@hp.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-203"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}