Lucene search

HP Product Security Response TeamHPSBHF03886

HistoryNov 20, 2023 - 12:00 a.m.

Intel Extreme Tuning Utility (XTU) November 2023 Security Update

2023-11-2000:00:00

HP Product Security Response Team

support.hp.com

intel

xtu

security

update

privilege escalation

vulnerability

platforms

software

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.2

Confidence

Low

EPSS

Percentile

9.0%

JSON

Intel has informed HP of a potential security vulnerability in some Intel® Extreme Tuning Utility (XTU) software, which might allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability.

Intel has released updates to mitigate the potential vulnerability. HP has identified affected platforms and corresponding SoftPaqs with minimum versions that mitigate the potential vulnerabilities. See the affected platforms listed below.

Affected configurations

Vulners

Node

hpomen_gaming_hubRange<1.0.78

hp15t-dc200_firmwareRange<1.0.78

hpomen_gaming_hubRange<1.0.78

hp15t-dh000_firmwareRange<1.0.78

hpomen_gaming_hubRange<1.0.78

hp15t-dh100_firmwareRange<1.0.78

hpomen_gaming_hubRange<1.0.78

hp15-ek000_firmwareRange<1.0.78

hpomen_gaming_hubRange<1.0.78

hp15-ek100_firmwareRange<1.0.78

hpomen_gaming_hubRange<1.0.78

hp15z-en000_firmwareRange<1.0.78

hpomen_gaming_hubRange<1.0.78

hp17t-cb000_firmwareRange<1.0.78

hpomen_gaming_hubRange<1.0.78

hp17t-cb100_firmwareRange<1.0.78

hpomen_gaming_hubRange<1.0.78

hp16t-b100_firmwareRange<1.0.78

hpomen_gaming_hubRange<1.0.78

hp16t-k000_firmwareRange<1.0.78

hpomen_gaming_hubRange<1.0.78

hphp_envy_m6-n000_firmwareRange<1.0.78

hpomen_gaming_hubRange<1.0.78

hp17t-ck100_firmwareRange<1.0.78

hpomen_gaming_hubRange<1.0.78

hp17t-ap000_firmwareRange<1.0.78

hpomen_gaming_hubRange<1.0.78

hp15t-dg000_firmwareRange<1.0.78

hpvictus_by_hp_gaming_15-fa0xxx_firmwareRange<1.0.78

hp15t-fa000_firmwareRange<1.0.78

hpvictus_by_hp_gaming_15-fa1xxx_firmwareRange<1.0.78

hpvictus_by_hp_gaming_15-fb0xxx_firmwareRange<1.0.78

hp15z-fb000_firmwareRange<1.0.78

hpvictus_by_hp_gaming_15-fb1xxx_firmwareRange<1.0.78

hpvictus_by_hp_gaming_16-d0xxx_firmwareRange<1.0.78

hpvictus_by_hp_gaming_16-d1xxx_firmwareRange<1.0.78

hp16t-d100_firmwareRange<1.0.78

hpvictus_by_hp_gaming_16-r0xxx_firmwareRange<1.0.78

hpvictus_by_hp_gaming_16-s0xxx_firmwareRange<1.0.78

hpomen_gaming_hubRange<1.0.78

hpelite_tower_880_g9_desktop_pc_firmwareRange<1.0.78

hpomen_gaming_hubRange<1.0.78

hppsc_900Range<1.0.78

VendorProductVersionCPE
hpomen_gaming_hub*cpe:2.3:a:hp:omen_gaming_hub:*:*:*:*:*:*:*:*
hp15t-dc200_firmware*cpe:2.3:a:hp:15t-dc200_firmware:*:*:*:*:*:*:*:*
hp15t-dh000_firmware*cpe:2.3:a:hp:15t-dh000_firmware:*:*:*:*:*:*:*:*
hp15t-dh100_firmware*cpe:2.3:a:hp:15t-dh100_firmware:*:*:*:*:*:*:*:*
hp15-ek000_firmware*cpe:2.3:a:hp:15-ek000_firmware:*:*:*:*:*:*:*:*
hp15-ek100_firmware*cpe:2.3:a:hp:15-ek100_firmware:*:*:*:*:*:*:*:*
hp15z-en000_firmware*cpe:2.3:a:hp:15z-en000_firmware:*:*:*:*:*:*:*:*
hp17t-cb000_firmware*cpe:2.3:a:hp:17t-cb000_firmware:*:*:*:*:*:*:*:*
hp17t-cb100_firmware*cpe:2.3:a:hp:17t-cb100_firmware:*:*:*:*:*:*:*:*
hp16t-b100_firmware*cpe:2.3:a:hp:16t-b100_firmware:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
hp	omen_gaming_hub	*	cpe:2.3:a:hp:omen_gaming_hub::::::::
hp	15t-dc200_firmware	*	cpe:2.3:a:hp:15t-dc200_firmware::::::::
hp	15t-dh000_firmware	*	cpe:2.3:a:hp:15t-dh000_firmware::::::::
hp	15t-dh100_firmware	*	cpe:2.3:a:hp:15t-dh100_firmware::::::::
hp	15-ek000_firmware	*	cpe:2.3:a:hp:15-ek000_firmware::::::::
hp	15-ek100_firmware	*	cpe:2.3:a:hp:15-ek100_firmware::::::::
hp	15z-en000_firmware	*	cpe:2.3:a:hp:15z-en000_firmware::::::::
hp	17t-cb000_firmware	*	cpe:2.3:a:hp:17t-cb000_firmware::::::::
hp	17t-cb100_firmware	*	cpe:2.3:a:hp:17t-cb100_firmware::::::::
hp	16t-b100_firmware	*	cpe:2.3:a:hp:16t-b100_firmware::::::::