[German]Vendor HP published a security article on February 21, 2023, addressing BIOS updates for HP systems. Potential time-of-check to time-of-use (TOCTOU) vulnerabilities in the BIOS of certain HP PC products have been identified, allowing for arbitrary code execution, denial of service, and information disclosure (see this CERT post). The four vulnerabilities have a CVE v3.1 base score of 7.8; the details, including instructions for BIOS updates, can be found in this HP article. (via)
Blogs
Links
Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Sponsors
(Paypal-Donations)Recent Comments
- Harvey Nusbaum on Windows 11 24H2: Fix for Synaptics audio issue on HP Prodesk 600 G4
- DK on Windows 11 24H2: Hanging RDP session as a problem
- Anonymous on Windows 11: Still RDP issues (Feb. 2025)?
- John Blawkowski on WSUS problem: Clients have not logged in since 12.2.2025
- Techvet on WSUS problem: Clients have not logged in since 12.2.2025
Recent Comments
- Harvey Nusbaum on Windows 11 24H2: Fix for Synaptics audio issue on HP Prodesk 600 G4
- DK on Windows 11 24H2: Hanging RDP session as a problem
- Anonymous on Windows 11: Still RDP issues (Feb. 2025)?
- John Blawkowski on WSUS problem: Clients have not logged in since 12.2.2025
- Techvet on WSUS problem: Clients have not logged in since 12.2.2025