Home

Description

A potential security vulnerability has been identified in HP Sure Start’s protection of the Intel Flash Descriptor in certain HP PC products, which might allow security bypass, arbitrary code execution, loss of integrity or confidentiality, or denial of service. HP is releasing BIOS updates to mitigate the potential vulnerability.

PUBLISHED Reserved 2023-11-20 | Published 2025-10-07 | Updated 2025-10-07 | Assigner hp




HIGH: 7.2CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:L/VI:H/VA:H/SC:H/SI:H/SA:H

Product status

Default status
unaffected

See HP security bulletin reference for affected versions
affected

References

support.hp.com/...ument/ish_13064666-13064688-16/hpsbhf04061

cve.org (CVE-2023-6215)

nvd.nist.gov (CVE-2023-6215)

Download JSON