1. Home
  2. CVE Database
  3. CVE-2022-31646
HIGH · 7.8

CVE-2022-31646

Potential vulnerabilities have been identified in the system BIOS of certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information dis...

Vulnerability Description

Potential vulnerabilities have been identified in the system BIOS of certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure.

CVSS Score

7.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
HpDragonfly Folio G3 2-In-1 Firmware01.01.03
HpDragonfly Folio G3 2-In-1-
HpElite Dragonfly Firmware01.21.01
HpElite Dragonfly-
HpElite Dragonfly G3 Firmware01.03.01
HpElite Dragonfly G3-
HpElite Dragonfly G2 Firmware01.10.00
HpElite Dragonfly G2-
HpElite Dragonfly Max Firmware01.10.00
HpElite Dragonfly Max-
HpElite Folio 2-In-1 Firmwarenot_impacted
HpElite Folio 2-In-1-
HpElite X2 1012 G1 Firmware1.57
HpElite X2 1012 G1-
HpElite X2 1012 G2 Firmware1.43
HpElite X2 1012 G2-
HpElite X2 1013 G3 Firmware01.21.01
HpElite X2 1013 G3-
HpElite X2 G4 Firmware01.21.01
HpElite X2 G4-

Related Weaknesses (CWE)

CWE-863

References

FAQ

What is CVE-2022-31646?

CVE-2022-31646 is a vulnerability with a CVSS score of 7.8 (HIGH). Potential vulnerabilities have been identified in the system BIOS of certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information dis...

How severe is CVE-2022-31646?

CVE-2022-31646 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-31646?

Check the references section above for vendor advisories and patch information. Affected products include: Hp Dragonfly Folio G3 2-In-1 Firmware, Hp Dragonfly Folio G3 2-In-1, Hp Elite Dragonfly Firmware, Hp Elite Dragonfly, Hp Elite Dragonfly G3 Firmware.