CVE-2017-2751

A BIOS password extraction vulnerability has been reported on certain consumer notebooks with firmware F.22 and others. The BIOS password was stored in CMOS in a way that allowed it to be extracted. This applies to consumer notebooks launched in early 2014.

CVSS v3.0 4.6 MEDIUM
CVSS v2.0 2.1 LOW

4.6^/10

CVSS v3.0 : MEDIUM

V3 Legend

Vector : AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability : 0.9 / Impact : 3.6

Attack Vector PHYSICAL

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

2.1^/10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:L/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 3.9 / Impact : 2.9

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
https://support.hp.com/us-en/document/c05913581	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:hp:hp_240_g1_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_240_g1:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:hp:hp_245_g1_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_245_g1:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:hp:hp_1000-1300_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_1000-1300:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:hp:hp_250_g1_notebook_pc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_250_g1_notebook_pc:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:hp:hp_255_g1_notebook_pc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_255_g1_notebook_pc:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:hp:hp_envy_15-j000_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_envy_15-j000:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:hp:hp_envy_15-j100_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_envy_15-j100:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:hp:hp_pavilion_15-n000_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_pavilion_15-n000:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:hp:hp_246_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_246:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:hp:hp_455_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_455:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:hp:hp_envy_17_j100_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_envy_17_j100:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:hp:hp_envy_17-j100_leap_motion_se_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_envy_17-j100_leap_motion_se:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:hp:hp_split_13-g200_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_split_13-g200:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:hp:hp_envy_100_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_envy_100:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:hp:hp_pavilion_14-n000_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_pavilion_14-n000:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:hp:hp_envy_14-k100_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_envy_14-k100:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:hp:hp_spectre_x2_13-smb_pro_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_spectre_x2_13-smb_pro:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:hp:hp_spectre_13-h200_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_spectre_13-h200:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:hp:hp_pavilion_15-n200_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_pavilion_15-n200:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:hp:hp_pavilion_15-n300_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_pavilion_15-n300:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:hp:hp_envy_m6-n000_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_envy_m6-n000:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:hp:hp_255_g3_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_255_g3:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND

cpe:2.3:o:hp:hp_14-g000_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_14-g000:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND

cpe:2.3:o:hp:hp_pavilion_11-n000_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_pavilion_11-n000:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND

cpe:2.3:o:hp:hp_15-r000_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_15-r000:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND

cpe:2.3:o:hp:hp_15-r500_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_15-r500:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND

cpe:2.3:o:hp:hp_pavilion_10-f000_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_pavilion_10-f000:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND

cpe:2.3:o:hp:hp_g14-a000_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_g14-a000:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND

cpe:2.3:o:hp:hp_14-r000_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_14-r000:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND

cpe:2.3:o:hp:hp_240_g3_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_240_g3:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND

cpe:2.3:o:hp:hp_246_g3_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:hp_246_g3:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND

cpe:2.3:o:hp:compaq_cq45-900_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:hp:compaq_cq45-900:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND

cpe:2.3:o:hp:compaq_14-h000_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:hp:compaq_14-h000:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND

cpe:2.3:o:hp:compaq_14-s000_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:hp:compaq_14-s000:-:*:*:*:*:*:*:*

Information

Published : 2018-10-03 13:29

Updated : 2019-10-02 17:03

NVD link : CVE-2017-2751

Mitre link : CVE-2017-2751

JSON object : View

CWE

CWE-522

Insufficiently Protected Credentials

Products Affected

hp_pavilion_11-n000
hp_255_g1_notebook_pc_firmware
hp_pavilion_11-n000_firmware
hp_240_g3_firmware
hp_envy_17-j100_leap_motion_se_firmware
hp_15-r500
hp_250_g1_notebook_pc
hp_240_g1
compaq_14-s000_firmware
hp_1000-1300_firmware
hp_envy_15-j100_firmware
hp_pavilion_15-n000
hp_envy_100_firmware
hp_455
hp_envy_15-j100
hp_envy_15-j000
hp_spectre_13-h200_firmware
hp_spectre_13-h200
hp_pavilion_10-f000
hp_240_g3
hp_255_g1_notebook_pc
hp_246_g3_firmware
compaq_14-h000
hp_455_firmware
hp_split_13-g200_firmware
hp_pavilion_14-n000
hp_246_firmware
hp_pavilion_15-n200_firmware
hp_255_g3_firmware
hp_15-r000_firmware
hp_spectre_x2_13-smb_pro_firmware
hp_246_g3
hp_14-g000_firmware
hp_pavilion_10-f000_firmware
hp_pavilion_14-n000_firmware
hp_240_g1_firmware
hp_pavilion_15-n000_firmware
hp_14-g000
hp_envy_15-j000_firmware
hp_envy_100
compaq_14-h000_firmware
hp_envy_14-k100_firmware
hp_split_13-g200
compaq_cq45-900_firmware
hp_envy_17_j100
hp_pavilion_15-n200
hp_pavilion_15-n300_firmware
hp_envy_m6-n000_firmware
hp_envy_17_j100_firmware
compaq_cq45-900
hp_255_g3
hp_14-r000
hp_246
hp_250_g1_notebook_pc_firmware
hp_envy_17-j100_leap_motion_se
hp_1000-1300
compaq_14-s000
hp_245_g1_firmware
hp_envy_14-k100
hp_pavilion_15-n300
hp_g14-a000_firmware
hp_15-r500_firmware
hp_245_g1
hp_envy_m6-n000
hp_g14-a000
hp_spectre_x2_13-smb_pro
hp_14-r000_firmware
hp_15-r000

4.6 /10

Attack Vector PHYSICAL

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

2.1 /10

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

JSON object

Attach tags to CVE-2017-2751

4.6^/10

2.1^/10

Attach tags to `CVE-2017-2751`