Vulnerability Details CVE-2021-3661
A potential security vulnerability has been identified in certain HP Workstation BIOS (UEFI firmware) which may allow arbitrary code execution. HP is releasing firmware mitigations for the potential vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 70.8%
CVSS Severity
CVSS v3 Score 8.4
References
Products affected by CVE-2021-3661
-
cpe:2.3:h:hp:z1_all-in-one_g3:-
-
cpe:2.3:h:hp:z238_microtower:-
-
cpe:2.3:h:hp:z240_small_form_factor:-
-
cpe:2.3:h:hp:z240_tower:-
-
cpe:2.3:h:hp:z2_mini_g3:-
-
cpe:2.3:h:hp:z2_mini_g4:-
-
cpe:2.3:h:hp:z2_mini_g5:-
-
cpe:2.3:h:hp:z2_small_form_factor_g4:-
-
cpe:2.3:h:hp:z2_small_form_factor_g5:-
-
cpe:2.3:h:hp:z2_small_form_factor_g8:-
-
cpe:2.3:h:hp:z2_tower_g4:-
-
cpe:2.3:h:hp:z2_tower_g5:-
-
cpe:2.3:h:hp:z2_tower_g8:-
-
cpe:2.3:h:hp:z440:-
-
cpe:2.3:h:hp:z4_g4:-
-
cpe:2.3:h:hp:z640:-
-
cpe:2.3:h:hp:z6_g4:-
-
cpe:2.3:h:hp:z840:-
-
cpe:2.3:h:hp:z8_g4:-
-
cpe:2.3:h:hp:zcentral_4r:-
-
cpe:2.3:o:hp:z1_all-in-one_g3_firmware:01.31
-
cpe:2.3:o:hp:z238_microtower_firmware:01.83
-
cpe:2.3:o:hp:z240_small_form_factor_firmware:01.83
-
cpe:2.3:o:hp:z240_tower_firmware:01.83
-
cpe:2.3:o:hp:z2_mini_g3_firmware:01.83
-
cpe:2.3:o:hp:z2_mini_g4_firmware:01.08.01
-
cpe:2.3:o:hp:z2_mini_g5_firmware:01.03.00_rev_a
-
cpe:2.3:o:hp:z2_small_form_factor_g4_firmware:01.08.01
-
cpe:2.3:o:hp:z2_small_form_factor_g5_firmware:01.03.00_rev_a
-
cpe:2.3:o:hp:z2_small_form_factor_g8_firmware:01.03.00_rev_a
-
cpe:2.3:o:hp:z2_tower_g4_firmware:01.08.01
-
cpe:2.3:o:hp:z2_tower_g5_firmware:01.03.00_rev_a
-
cpe:2.3:o:hp:z2_tower_g8_firmware:01.03.00_rev_a
-
cpe:2.3:o:hp:z440_firmware:2.58
-
cpe:2.3:o:hp:z4_g4_firmware:02.75
-
cpe:2.3:o:hp:z640_firmware:2.58
-
cpe:2.3:o:hp:z6_g4_firmware:02.75
-
cpe:2.3:o:hp:z840_firmware:2.58
-
cpe:2.3:o:hp:z8_g4_firmware:02.75
-
cpe:2.3:o:hp:zcentral_4r_firmware:01.18