CVE-2023-26300

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Oct 18, 2023

Updated: Oct 31, 2023

Summary

CVE-2023-26300 is a newly discovered privilege escalation vulnerability affecting certain HP PC systems. The issue lies within the BIOS and could potentially allow unauthorized users to gain higher access levels, increasing the risk of data theft or system compromise. HP has acknowledged the vulnerability and plans to release firmware updates to address the issue, mitigating the potential threat. System users are strongly advised to install the patches as soon as they become available. Until then, implementing additional security measures, such as multi-factor authentication and limiting user privileges, is recommended.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tDucq0
https://www.cve.org/CVERecord?id=CVE-2023-26300
https://nvd.nist.gov/vuln/detail/CVE-2023-26300

Back to Vulnerability Database

CVE-2023-26300

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations