CVE-2022-48219

Potential vulnerabilities have been identified in certain HP Desktop PC products using the HP TamperLock feature, which might allow intrusion detection bypass via a physical attack. HP is releasing firmware and guidance to mitigate these potential vulnerabilities.

CVSS v3 6.4 MEDIUM

6.4^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 0.9 / Impact : 5.5

Attack Vector PHYSICAL

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://support.hp.com/us-en/document/ish_10170895-10170920-16/hpsbhf03907	Vendor Advisory
https://support.hp.com/us-en/document/ish_10170895-10170920-16/hpsbhf03907	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:hp:elite_mini_600_g9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:elite_mini_600_g9:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:hp:elite_mini_800_g9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:elite_mini_800_g9:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:hp:elite_sff_600_g9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:elite_sff_600_g9:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:hp:elite_sff_800_g9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:elite_sff_800_g9:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:hp:elite_tower_600_g9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:elite_tower_600_g9:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:hp:elite_tower_680_g9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:elite_tower_680_g9:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:hp:elite_tower_800_g9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:elite_tower_800_g9:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:hp:elite_tower_880_g9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:elite_tower_880_g9:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:hp:pro_mini_260_g9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:pro_mini_260_g9:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:hp:pro_mini_400_g9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:pro_mini_400_g9:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:hp:pro_sff_400_g9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:pro_sff_400_g9:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:hp:pro_tower_400_g9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:pro_tower_400_g9:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:hp:pro_tower_480_g9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:pro_tower_480_g9:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:hp:z1_g8_tower_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:z1_g8_tower:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:hp:z1_g9_tower_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:z1_g9_tower:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:hp:elitedesk_800_g8_desktop_mini_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:elitedesk_800_g8_desktop_mini:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:hp:elitedesk_800_g8_small_form_factor_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:elitedesk_800_g8_small_form_factor:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:hp:elitedesk_800_g8_tower_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:elitedesk_800_g8_tower:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:hp:elitedesk_880_g8_tower_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:elitedesk_880_g8_tower:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:hp:eliteone_800_g8_24_all-in-one_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:eliteone_800_g8_24_all-in-one:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:hp:eliteone_800_g8_27_all-in-one_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:eliteone_800_g8_27_all-in-one:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:hp:mini_conferencing_pc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:mini_conferencing_pc_with_zoom_rooms:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND

cpe:2.3:o:hp:z2_mini_g9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:z2_mini_g9:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND

cpe:2.3:o:hp:z2_small_form_factor_g8_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:z2_small_form_factor_g8:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND

cpe:2.3:o:hp:z2_small_form_factor_g9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:z2_small_form_factor_g9:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND

cpe:2.3:o:hp:z2_tower_g8_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:z2_tower_g8:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND

cpe:2.3:o:hp:z2_tower_g9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:hp:z2_tower_g9:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2024-02-14 23:15

Updated : 2026-01-09 22:02

NVD link : CVE-2022-48219

Mitre link : CVE-2022-48219

CVE.ORG link : CVE-2022-48219

JSON object : View

Products Affected

pro_tower_480_g9_firmware
elite_mini_800_g9
z1_g8_tower_firmware
z2_mini_g9
elite_tower_600_g9
pro_mini_260_g9
elite_sff_800_g9_firmware
elite_tower_680_g9
pro_tower_480_g9
elitedesk_800_g8_desktop_mini_firmware
elite_sff_600_g9_firmware
z1_g9_tower_firmware
pro_tower_400_g9
z2_tower_g8_firmware
elitedesk_800_g8_desktop_mini
z2_small_form_factor_g8_firmware
eliteone_800_g8_24_all-in-one_firmware
elite_mini_600_g9
elite_mini_800_g9_firmware
z2_mini_g9_firmware
mini_conferencing_pc_with_zoom_rooms
elite_tower_600_g9_firmware
pro_mini_260_g9_firmware
eliteone_800_g8_27_all-in-one_firmware
z2_tower_g9_firmware
pro_tower_400_g9_firmware
elite_tower_880_g9
z2_tower_g9
elite_mini_600_g9_firmware
elite_sff_600_g9
elite_tower_800_g9
elitedesk_800_g8_tower
pro_mini_400_g9_firmware
z2_small_form_factor_g9
mini_conferencing_pc_firmware
pro_mini_400_g9
elite_tower_680_g9_firmware
elitedesk_800_g8_small_form_factor
elite_tower_800_g9_firmware
elite_tower_880_g9_firmware
pro_sff_400_g9
z1_g8_tower
elitedesk_800_g8_tower_firmware
z1_g9_tower
z2_small_form_factor_g8
z2_small_form_factor_g9_firmware
elitedesk_880_g8_tower
z2_tower_g8
elitedesk_880_g8_tower_firmware
elite_sff_800_g9
eliteone_800_g8_27_all-in-one
pro_sff_400_g9_firmware
eliteone_800_g8_24_all-in-one
elitedesk_800_g8_small_form_factor_firmware

CWE

CWE-693

Protection Mechanism Failure

6.4 /10