TROYANOSYVIRUS
Back to CVEs

CVE-2021-3437

CRITICAL
9.8

Description

Potential security vulnerabilities have been identified in an OMEN Gaming Hub SDK package which may allow escalation of privilege and/or denial of service. HP is releasing software updates to mitigate the potential vulnerabilities.

CVE Details

CVSS v3.1 Score9.8
SeverityCRITICAL
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
Published12/12/2022
Last Modified4/29/2025
Sourcenvd
Honeypot Sightings0

Affected Products

hp:envy_te01-0xxxhp:envy_te01-1xxxhp:envy_te01-2xxxhp:omen_25l_desktop_pc_gt11-1000ihp:omen_25l_desktop_pc_gt12-1000ihp:omen_873-0xxxhp:omen_880-0xxhp:omen_880-1xxhp:omen_880-5xxhp:omen_desktop_pc_25l_gt11-0xxxahp:omen_desktop_pc_25l_gt11-0xxxihp:omen_desktop_pc_25l_gt12-0xxxahp:omen_desktop_pc_25l_gt12-0xxxihp:omen_desktop_pc_30l_gt13-0xxxahp:omen_desktop_pc_30l_gt13-0xxxihp:omen_desktop_pc_30l_gt13-1xxxihp:omen_gaming_hubhp:omen_gaming_hub_sdkhp:omen_laptop_15-ce0xxhp:omen_laptop_15-ce1xxhp:omen_laptop_15-dc0xxxhp:omen_laptop_15-dc1xxxhp:omen_laptop_15-dc2xxxhp:omen_laptop_15-dg0xxxhp:omen_laptop_15-dh0xxxhp:omen_laptop_15-dh1xxxhp:omen_laptop_15-ek0xxxhp:omen_laptop_15-ek1xxxhp:omen_laptop_15-en0xxxhp:omen_laptop_15-en1xxxhp:omen_laptop_17-an0xxhp:omen_laptop_17-an1xxhp:omen_laptop_17-ap0xxhp:omen_laptop_17-cb0xxxhp:omen_laptop_17-cb1xxxhp:omen_obelisk_875-0xxxhp:omen_obelisk_875-1xxxhp:omen_x_900-1xxhp:omen_x_900-2xxhp:omen_x_p1000-0xxhp:pavilion_gaming_laptop_15-dk2xxxhp:pavilion_gaming_laptop_15-ec2xxxhp:pavilion_gaming_laptop_16-a0xxxhp:pavilion_gaming_tg01-0xxxahp:pavilion_gaming_tg01-0xxxihp:pavilion_gaming_tg01-1xxxahp:pavilion_gaming_tg01-1xxxihp:pavilion_gaming_tg01-2xxxhp:pavilion_tp01-0xxxhp:pavilion_tp01-1xxx

Weaknesses (CWE)

CWE-276

References

https://support.hp.com/us-en/document/ish_4610088-4610112-16/hpsbgn03726(hp-security-alert@hp.com)
https://support.hp.com/us-en/document/ish_4610088-4610112-16/hpsbgn03726(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.