What is CVE-2016-2243?

CVE-2016-2243 is a high-severity vulnerability in Hp 1000_series_firmware, classified under Improper Access Control. CVSS score: 7.9/10. Published 2016-03-04.

How severe is CVE-2016-2243?

High severity. CVSS v3 base score is 7.9 out of 10.

Vulnerability in Hp 1000_series_firmware

CVE-2016-2243

Sure Start on HP Commercial PCs 2015 allows local users to cause a denial of service (BIOS recovery failure) by leveraging administrative access.

EPSS: 0.000 (13.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.9 (High). Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:H.

Affected products

Hp 1000_series_firmware — versions 1.04, 1.1, 1.01
Hp 700_series_firmware — versions 1.08, 2.09, 2.05
Hp 800_series_firmware — versions 2.09, 2.1
Hp Elitebook_725_g3
Hp Elitebook_745_g3
Hp Elitebook_755_g3
Hp Elitebook_820_g3
Hp Elitebook_840_g3
Hp Elitebook_850_g3
Hp Elitebook_folio_1012_x2_g2

Weakness classification (CWE)

CWE-284 — Improper Access Control

References

PSRT110027 (Vendor Advisory, x_refsource_HP, vendor-advisory)
1035193 (vdb-entry, x_refsource_SECTRACK)

Frequently asked questions

What is CVE-2016-2243?: CVE-2016-2243 is a high-severity vulnerability in Hp 1000_series_firmware, classified under Improper Access Control. CVSS score: 7.9/10. Published 2016-03-04.
How severe is CVE-2016-2243?: High severity. CVSS v3 base score is 7.9 out of 10.