Vulnerability Database

309,961

Total vulnerabilities in the database

CVE-2021-3661

A potential security vulnerability has been identified in certain HP Workstation BIOS (UEFI firmware) which may allow arbitrary code execution. HP is releasing firmware mitigations for the potential vulnerability.

Published: Dec 12, 2022
Updated: Nov 16, 2025
CVE: CVE-2021-3661
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.4
AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-94

Affected Software
References

Software	From	Fixed in
hp / z1_all-in-one_g3_firmware	01.31	01.31.x
hp / z2_mini_g3_firmware	01.83	01.83.x
hp / z2_mini_g4_firmware	01.08.01	01.08.01.x
hp / z2_mini_g5_firmware	01.03.00_rev_a	01.03.00_rev_a.x
hp / z2_small_form_factor_g4_firmware	01.08.01	01.08.01.x
hp / z2_small_form_factor_g5_firmware	01.03.00_rev_a	01.03.00_rev_a.x
hp / z2_small_form_factor_g8_firmware	01.03.00_rev_a	01.03.00_rev_a.x
hp / z2_tower_g4_firmware	01.08.01	01.08.01.x
hp / z2_tower_g5_firmware	01.03.00_rev_a	01.03.00_rev_a.x
hp / z2_tower_g8_firmware	01.03.00_rev_a	01.03.00_rev_a.x
hp / z238_microtower_firmware	01.83	01.83.x
hp / z240_small_form_factor_firmware	01.83	01.83.x
hp / z240_tower_firmware	01.83	01.83.x
hp / z4_g4_firmware	02.75	02.75.x
hp / z440_firmware	2.58	2.58.x
hp / z6_g4_firmware	02.75	02.75.x
hp / z640_firmware	2.58	2.58.x
hp / z8_g4_firmware	02.75	02.75.x
hp / z840_firmware	2.58	2.58.x
hp / zcentral_4r_firmware	01.18	01.18.x

https://support.hp.com/us-en/document/ish_5670997-5671021-16/hpsbhf03770

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo