Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-4499

A potential security vulnerability has been identified in the HP ThinUpdate utility (also known as HP Recovery Image and Software Download Tool) which may lead to information disclosure. HP is releasing mitigation for the potential vulnerability.

Published

2023-10-13T17:15:09.653

Last Modified

2024-11-21T08:35:17.763

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses

Type: Primary
CWE-295

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	hp	thinupdate	< 2.7.15	Yes
Hardware	hp	elite_mt645	-	No
Hardware	hp	mt21	-	No
Hardware	hp	mt22	-	No
Hardware	hp	mt31	-	No
Hardware	hp	mt32	-	No
Hardware	hp	mt43	-	No
Hardware	hp	mt44	-	No
Hardware	hp	mt45	-	No
Hardware	hp	mt46	-	No
Hardware	hp	pro_mt440_g3	-	No
Hardware	hp	t430	-	No
Hardware	hp	t530	-	No
Hardware	hp	t540	-	No
Hardware	hp	t628	-	No
Hardware	hp	t630	-	No
Hardware	hp	t638	-	No
Hardware	hp	t640	-	No
Hardware	hp	t730	-	No
Hardware	hp	t740	-	No

References

https://support.hp.com/us-en/document/ish_9440593-9440618-16 Patch, Vendor Advisory ([email protected])
https://support.hp.com/us-en/document/ish_9440593-9440618-16 Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)