7.9

CVE-2016-2243

Sure Start on HP Commercial PCs 2015 allows local users to cause a denial of service (BIOS recovery failure) by leveraging administrative access.

Data is provided by the National Vulnerability Database (NVD)
Hp700 Series Firmware Version1.08
   HpElitebook 725 G3 Version-
   HpElitebook 745 G3 Version-
   HpElitebook 755 G3 Version-
Hp800 Series Firmware Version2.09
   HpElitedesk 800 G2 Twr Version-
   HpElitedesk 800 Sff Version-
HpZ240 Firmware Version1.11
   HpZ240 Sff Workstation N51 Version-
   HpZ240 Tower Workstation N51 Version-
Hp700 Series Firmware Version2.09
   HpElitedesk 705 G2 Mt Sff Version-
HpZ238 Firmware Version1.11
HpZbook Firmware Version1.03
   HpZbook 15 G3 Version-
   HpZbook 15u G3 Version-
   HpZbook 17 G3 Version-
Hp800 Series Firmware Version2.1
   HpElitedesk 800 G2 Dm Version-
   HpMp9 G2 Retail System Version-
   SamsungX14j Firmware Versiont-ms14jakucb-1102.5
Hp1000 Series Firmware Version1.04
   HpElitebook 820 G3 Version-
   HpElitebook 840 G3 Version-
   HpElitebook 850 G3 Version-
Hp1000 Series Firmware Version1.1
Hp1000 Series Firmware Version1.01
   HpElitebook Folio 1040 G3 Version-
Hp700 Series Firmware Version2.05
Hp700 Series Firmware Version1.05
   HpMt42 Mobile Thin Client Version-
HpZbook Firmware Version1.04
   HpZbook Studio G3 Version-
Hp700 Series Firmware Version2.07
   ZyxelGs1900-10hp Firmware Version < 2.50\(aazi.0\)c0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.04% 0.117
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 7.9 1.5 5.8
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:H
nvd@nist.gov 5.4 3.4 7.8
AV:L/AC:M/Au:N/C:N/I:P/A:C
CWE-284 Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.