Vulnerability Database

289,871

Total vulnerabilities in the database

CVE-2019-18913

A potential security vulnerability with pre-boot DMA may allow unauthorized UEFI code execution using open-case attacks. This industry-wide issue requires physically accessing internal expansion slots with specialized hardware and software tools to modify UEFI code in memory. This affects HP Intel-based Business PCs that support Microsoft Windows 10 Kernel DMA protection. Affected versions depend on platform (prior to 01.04.02; or prior to 02.04.01; or prior to 02.04.02).

  • Published: Jan 31, 2020
  • Updated: Apr 13, 2023
  • CVE: CVE-2019-18913
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 6.8
  • AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

  • Severity: High
  • Score: 7.2
  • AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Software From Fixed in
hp / elitedesk_800_g5_dm_firmware - 02.04.02
hp / elitedesk_800_g5_sff_firmware - 02.04.02
hp / elitedesk_800_g5_twr_firmware - 02.04.02
hp / eliteone_800_g5_aio_firmware - 02.04.02
hp / prodesk_400_g5_dm_firmware - 02.04.01
hp / prodesk_400_g6_mt_firmware - 02.04.01
hp / prodesk_400_g6_sff_firmware - 02.04.02
hp / prodesk_480_g6_mt_firmware - 02.04.01
hp / prodesk_600_g5_dm_firmware - 02.04.01
hp / prodesk_600_g5_mt_firmware - 02.04.01
hp / prodesk_600_g5_pci_mt_firmware - 02.04.01
hp / prodesk_600_g5_sff_firmware - 02.04.01
hp / proone_400_g5_aio_firmware - 02.04.01
hp / proone_440_g5_aio_firmware - 02.04.01
hp / proone_600_g5_aio_firmware - 02.04.01
hp / elite_dragonfly_firmware - 01.04.02
hp / elite_x2_g4_firmware - 01.04.02
hp / elitebook_830_g6_firmware - 01.04.02
hp / elitebook_836_g6_firmware - 01.04.02
hp / elitebook_840_g6_firmware - 01.04.02
hp / elitebook_840_g6_healthcare_edition_firmware - 01.04.02
hp / elitebook_846_g6_firmware - 01.04.02
hp / elitebook_846_g6_healthcare_edition_firmware - 01.04.02
hp / elitebook_850_g6_firmware - 01.04.02
hp / elitebook_x360_1030_g4_firmware - 01.04.02
hp / elitebook_x360_1040_g6_firmware - 01.04.02
hp / elitebook_x360_830_g6_firmware - 01.04.02
hp / probook_640_g5_firmware - 01.04.02
hp / probook_650_g5_firmware - 01.04.02
hp / zbook_14u_g6_mobile_workstation_firmware - 01.04.02
hp / zbook_15u_g6_mobile_workstation_firmware - 01.04.02
hp / zhan_x_13_g2_firmware - 01.04.02
hp / zbook_17u_g6_mobile_workstation_firmware - 01.04.02