Lucene search

HP Product Security Response TeamHPSBHF03913

HistoryFeb 13, 2024 - 12:00 a.m.

Intel Extreme Tuning Utility (XTU) February 2024 Security Update

2024-02-1300:00:00

HP Product Security Response Team

support.hp.com

intel

extreme tuning utility

security update

potential vulnerabilities

privilege escalation

software

security document

6.8 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:H/A:H

7.7 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.2%

JSON

Intel has informed HP of potential security vulnerabilities in some Intel® Extreme Tuning Utility (XTU) software, which might allow escalation of privilege. Intel is releasing software updates to mitigate these potential vulnerabilities.

Intel has released updates to mitigate the potential vulnerabilities. HP has identified affected platforms and corresponding SoftPaqs with minimum versions that mitigate the potential vulnerabilities. See the affected platforms listed below.

Affected configurations

Vulners

Node

hpomen_gaming_hubRange<1.0.78

hphp_15-dy5xxx\,_15t-dy500Range<1.0.78

hphp_pavilion_x360_14-dh0xxx\,_14t-dh000Range<1.0.78

hphp_pavilion_x360_14-dh1xxx\,_14t-dh100Range<1.0.78

hphp_pavilion_x360_14-ek0xxx\,_14t-ek000Range<1.0.78

hphp_pavilion_x360_14-ek1xxx\,_14t-ek100Range<1.0.78

hphp_15-fc0xxx\,_15z-fc000Range<1.0.78

hpomen_gaming_hubRange<1.0.78

hphp_17-c3000\,_17-cn3xxx\,_17t-cn300Range<1.0.78

hpomen_gaming_hubRange<1.0.78

hphp_14-ck1xxx\,_14t-ck100Range<1.0.78

hpomen_gaming_hubRange<1.0.78

hphp_17-c3000\,_17-cn3xxx\,_17t-cn300Range<1.0.78

hphp_15-dy5xxx\,_15t-dy500Range<1.0.78

hpvictus_by_hp_15-fb1xxxRange<1.0.78

hpvictus_by_hp_15-fa1xxxRange<1.0.78

hpvictus_by_hp_15-fb1xxxRange<1.0.78

hpvictus_by_hp_16-d0xxxRange<1.0.78

hpvictus_by_hp_16-d1xxx\,_16t-d100Range<1.0.78

hpvictus_by_hp_16-r0xxxRange<1.0.78

hpvictus_by_hp_16-s0xxxRange<1.0.78

hphp_desktop_390-0xxxRange<1.0.78

hphp_envy_desktop_te02-1xxxRange<1.0.78

hpomen_gaming_hubRange<1.0.78

hphp_elitedesk_880_g4_tower_pcRange<1.0.78

hphp_envy_desktop_te02-1xxxRange<1.0.78

hpomen_gaming_hubRange<1.0.78

CPENameOperatorVersion
omen 15-dc0xxxlt1.0.78
omen 15-dc1xxxlt1.0.78
omen 15-dc2xxx, 15t-dc200lt1.0.78
omen 15-dh0xxx, 15t-dh000lt1.0.78
omen 15-dh1xxx, 15t-dh100lt1.0.78
omen 15-ek0xxx, 15-ek000lt1.0.78
omen 15-ek1xxx, 15-ek100lt1.0.78
omen 15-en0xxx, 15z-en000lt1.0.78
omen 15-en1xxxlt1.0.78
omen 17-cb0xxx, 17t-cb000lt1.0.78

Name	Operator	Version
omen 15-dc0xxx	lt	1.0.78
omen 15-dc1xxx	lt	1.0.78
omen 15-dc2xxx, 15t-dc200	lt	1.0.78
omen 15-dh0xxx, 15t-dh000	lt	1.0.78
omen 15-dh1xxx, 15t-dh100	lt	1.0.78
omen 15-ek0xxx, 15-ek000	lt	1.0.78
omen 15-ek1xxx, 15-ek100	lt	1.0.78
omen 15-en0xxx, 15z-en000	lt	1.0.78
omen 15-en1xxx	lt	1.0.78
omen 17-cb0xxx, 17t-cb000	lt	1.0.78