Vulnerability Description
Sure Start on HP Commercial PCs 2015 allows local users to cause a denial of service (BIOS recovery failure) by leveraging administrative access.
CVSS Score
7.9
HIGH
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hp | Elitebook 725 G3 | - |
| Hp | Elitebook 745 G3 | - |
| Hp | Elitebook 755 G3 | - |
| Hp | 700 Series Firmware | 1.08 |
| Hp | Elitedesk 800 G2 Twr | - |
| Hp | Elitedesk 800 Sff | - |
| Hp | 800 Series Firmware | 2.09 |
| Hp | Z240 Sff Workstation N51 | - |
| Hp | Z240 Tower Workstation N51 | - |
| Hp | Z240 Firmware | 1.11 |
| Hp | Elitedesk 705 G2 Mt Sff | - |
| Hp | Z238 Microtower Workstation N51 | - |
| Hp | Z238 Firmware | 1.11 |
| Hp | Zbook 15 G3 | - |
| Hp | Zbook 15U G3 | - |
| Hp | Zbook 17 G3 | - |
| Hp | Zbook Firmware | 1.03 |
| Hp | Elitedesk 800 G2 Dm | - |
| Hp | Mp9 G2 Retail System | - |
| Samsung | X14J Firmware | t-ms14jakucb-1102.5 |
Related Weaknesses (CWE)
References
- http://www.securitytracker.com/id/1035193
- https://h20565.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c05012469Vendor Advisory
- http://www.securitytracker.com/id/1035193
- https://h20565.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c05012469Vendor Advisory
FAQ
What is CVE-2016-2243?
CVE-2016-2243 is a vulnerability with a CVSS score of 7.9 (HIGH). Sure Start on HP Commercial PCs 2015 allows local users to cause a denial of service (BIOS recovery failure) by leveraging administrative access.
How severe is CVE-2016-2243?
CVE-2016-2243 has been rated HIGH with a CVSS base score of 7.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-2243?
Check the references section above for vendor advisories and patch information. Affected products include: Hp Elitebook 725 G3, Hp Elitebook 745 G3, Hp Elitebook 755 G3, Hp 700 Series Firmware, Hp Elitedesk 800 G2 Twr.