9.8

CVE-2021-3437

EPSS 15.11%
Published 12.12.2022 13:15:11
Last modified 29.04.2025 05:15:39
Source hp-security-alert@hp.com
Teams watchlist Login
Open Login

Potential security vulnerabilities have been identified in an OMEN Gaming Hub SDK package which may allow escalation of privilege and/or denial of service. HP is releasing software updates to mitigate the potential vulnerabilities.

Affected products Warnungen 0 Metrics 3 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Hp ≫ Omen Gaming Hub Version < 11.6.3.0

   Hp ≫ Envy Te01-0xxx Version-
   Hp ≫ Envy Te01-1xxx Version-
   Hp ≫ Envy Te01-2xxx Version-
   Hp ≫ Omen 25l Desktop Pc Gt11-1000i Version-
   Hp ≫ Omen 25l Desktop Pc Gt12-1000i Version-
   Hp ≫ Omen 873-0xxx Version-
   Hp ≫ Omen 880-0xx Version-
   Hp ≫ Omen 880-1xx Version-
   Hp ≫ Omen 880-5xx Version-
   Hp ≫ Omen Desktop Pc 25l Gt11-0xxxa Version-
   Hp ≫ Omen Desktop Pc 25l Gt11-0xxxi Version-
   Hp ≫ Omen Desktop Pc 25l Gt12-0xxxa Version-
   Hp ≫ Omen Desktop Pc 25l Gt12-0xxxi Version-
   Hp ≫ Omen Desktop Pc 30l Gt13-0xxxa Version-
   Hp ≫ Omen Desktop Pc 30l Gt13-0xxxi Version-
   Hp ≫ Omen Desktop Pc 30l Gt13-1xxxi Version-
   Hp ≫ Omen Laptop 15-ce0xx Version-
   Hp ≫ Omen Laptop 15-ce1xx Version-
   Hp ≫ Omen Laptop 15-dc0xxx Version-
   Hp ≫ Omen Laptop 15-dc1xxx Version-
   Hp ≫ Omen Laptop 15-dc2xxx Version-
   Hp ≫ Omen Laptop 15-dg0xxx Version-
   Hp ≫ Omen Laptop 15-dh0xxx Version-
   Hp ≫ Omen Laptop 15-dh1xxx Version-
   Hp ≫ Omen Laptop 15-ek0xxx Version-
   Hp ≫ Omen Laptop 15-ek1xxx Version-
   Hp ≫ Omen Laptop 15-en0xxx Version-
   Hp ≫ Omen Laptop 15-en1xxx Version-
   Hp ≫ Omen Laptop 17-an0xx Version-
   Hp ≫ Omen Laptop 17-an1xx Version-
   Hp ≫ Omen Laptop 17-ap0xx Version-
   Hp ≫ Omen Laptop 17-cb0xxx Version-
   Hp ≫ Omen Laptop 17-cb1xxx Version-
   Hp ≫ Omen Obelisk 875-0xxx Version-
   Hp ≫ Omen Obelisk 875-1xxx Version-
   Hp ≫ Omen X 900-1xx Version-
   Hp ≫ Omen X 900-2xx Version-
   Hp ≫ Omen X P1000-0xx Version-
   Hp ≫ Pavilion Gaming Laptop 15-dk2xxx Version-
   Hp ≫ Pavilion Gaming Laptop 15-ec2xxx Version-
   Hp ≫ Pavilion Gaming Laptop 16-a0xxx Version-
   Hp ≫ Pavilion Gaming Tg01-0xxxa Version-
   Hp ≫ Pavilion Gaming Tg01-0xxxi Version-
   Hp ≫ Pavilion Gaming Tg01-1xxxa Version-
   Hp ≫ Pavilion Gaming Tg01-1xxxi Version-
   Hp ≫ Pavilion Gaming Tg01-2xxx Version-
   Hp ≫ Pavilion Tp01-0xxx Version-
   Hp ≫ Pavilion Tp01-1xxx Version-

Hp ≫ Omen Gaming Hub Sdk Version < 1.0.44

   Hp ≫ Envy Te01-0xxx Version-
   Hp ≫ Envy Te01-1xxx Version-
   Hp ≫ Envy Te01-2xxx Version-
   Hp ≫ Omen 25l Desktop Pc Gt11-1000i Version-
   Hp ≫ Omen 25l Desktop Pc Gt12-1000i Version-
   Hp ≫ Omen 873-0xxx Version-
   Hp ≫ Omen 880-0xx Version-
   Hp ≫ Omen 880-1xx Version-
   Hp ≫ Omen 880-5xx Version-
   Hp ≫ Omen Desktop Pc 25l Gt11-0xxxa Version-
   Hp ≫ Omen Desktop Pc 25l Gt11-0xxxi Version-
   Hp ≫ Omen Desktop Pc 25l Gt12-0xxxa Version-
   Hp ≫ Omen Desktop Pc 25l Gt12-0xxxi Version-
   Hp ≫ Omen Desktop Pc 30l Gt13-0xxxa Version-
   Hp ≫ Omen Desktop Pc 30l Gt13-0xxxi Version-
   Hp ≫ Omen Desktop Pc 30l Gt13-1xxxi Version-
   Hp ≫ Omen Laptop 15-ce0xx Version-
   Hp ≫ Omen Laptop 15-ce1xx Version-
   Hp ≫ Omen Laptop 15-dc0xxx Version-
   Hp ≫ Omen Laptop 15-dc1xxx Version-
   Hp ≫ Omen Laptop 15-dc2xxx Version-
   Hp ≫ Omen Laptop 15-dg0xxx Version-
   Hp ≫ Omen Laptop 15-dh0xxx Version-
   Hp ≫ Omen Laptop 15-dh1xxx Version-
   Hp ≫ Omen Laptop 15-ek0xxx Version-
   Hp ≫ Omen Laptop 15-ek1xxx Version-
   Hp ≫ Omen Laptop 15-en0xxx Version-
   Hp ≫ Omen Laptop 15-en1xxx Version-
   Hp ≫ Omen Laptop 17-an0xx Version-
   Hp ≫ Omen Laptop 17-an1xx Version-
   Hp ≫ Omen Laptop 17-ap0xx Version-
   Hp ≫ Omen Laptop 17-cb0xxx Version-
   Hp ≫ Omen Laptop 17-cb1xxx Version-
   Hp ≫ Omen Obelisk 875-0xxx Version-
   Hp ≫ Omen Obelisk 875-1xxx Version-
   Hp ≫ Omen X 900-1xx Version-
   Hp ≫ Omen X 900-2xx Version-
   Hp ≫ Omen X P1000-0xx Version-
   Hp ≫ Pavilion Gaming Laptop 15-dk2xxx Version-
   Hp ≫ Pavilion Gaming Laptop 15-ec2xxx Version-
   Hp ≫ Pavilion Gaming Laptop 16-a0xxx Version-
   Hp ≫ Pavilion Gaming Tg01-0xxxa Version-
   Hp ≫ Pavilion Gaming Tg01-0xxxi Version-
   Hp ≫ Pavilion Gaming Tg01-1xxxa Version-
   Hp ≫ Pavilion Gaming Tg01-1xxxi Version-
   Hp ≫ Pavilion Gaming Tg01-2xxx Version-
   Hp ≫ Pavilion Tp01-0xxx Version-
   Hp ≫ Pavilion Tp01-1xxx Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	15.11%	0.944

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-276 Incorrect Default Permissions

During installation, installed file permissions are set to allow anyone to modify those files.

https://support.hp.com/us-en/document/ish_4610088-4610112-16/hpsbgn03726

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-3437

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-3437

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-3437

EUVD