SECURITY BULLETIN

HPSBHF03557 rev. 5 - Intel Active Management Technology, Intel Small Business Technology, and Intel Standard Manageability Remote Privilege Escalation

NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.


  • Release Date: 5/4/2017
  • Last Updated: 5/19/2017

Potential Security Impact: Remote escalation of privilege on provisioned systems or local escalation of privilege on unprovisioned systems


Source: Intel

0

VULNERABILITY SUMMARY

A security vulnerability has been discovered in Intel’s manageability firmware that impacts all Intel OEMs. This vulnerability is a security flaw that originated in the development and deployment of Intel's Manageability firmware. The vulnerability affects some of HP’s commercial PCs, and some HP workstations, thin clients, and retail point of sale products. HP’s consumer PC’s are not impacted. HP’s priority and focus is on supporting our customers and ensuring the safety and security of their systems.


Intel has released a security advisory (https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00075&languageid=en-fr) as noted below::


There is an escalation of privilege vulnerability in Intel® Active Management Technology (AMT), Intel® Standard Manageability (ISM), and Intel® Small Business Technology versions firmware versions 6.x, 7.x, 8.x 9.x, 10.x, 11.0, 11.5, and 11.6 that can allow an unprivileged attacker to gain control of the manageability features provided by these products.


There are two ways this vulnerability may be accessed, please note that Intel® Small Business Technology is not vulnerable to the first issue.


  • An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel Active Management Technology (AMT) and Intel Standard Manageability (ISM).

  • An unprivileged local attacker could provision manageability features gaining unprivileged network or local system privileges on Intel manageability SKUs: Intel Active Management Technology (AMT), Intel Standard Manageability (ISM), and Intel Small Business Technology (SBT).

References:: CVE-2017-5689, INTEL-SA-00075 (Intel), PSR-2017-0065 (HP)


SUPPORTED SOFTWARE VERSIONS*: Affected and not affected platforms are listed.

Please refer to the MITIGATION section below for the list of affected and not affected products.


1

BACKGROUND

For a PGP signed version of this security bulletin please write to: hp-security-alert@hp.com
CVSS 3.0 Base Metrics


Reference Base Vector Base Score
CVE-2017-5689 (1) Provisioned systems: (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) (1) 9.8
(2) Unprovisioned systems: (AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) (2) 8.4

Information on CVSS is documented in HP Customer Notice:: HPSN­2008­002.

2

MITIGATION

HP is working closely with Intel to validate their fix and ensure it works across HP’s range of commercial products. In the meantime, Intel has provided the following mitigation options that may be used prior to the firmware being deployed:


  • Step 1: Determine if you have an Intel® AMT, Intel® SBA, or Intel® ISM capable system: https://communities.intel.com/docs/DOC-5693. If you determine that you do not have an Intel® AMT, Intel® SBA, or Intel® ISM capable system then no further action is required.
  • Step 2: Utilize the Detection Guide to assess if your system has the impacted firmware: https://downloadcenter.intel.com/download/26755. If you do have a version in the “Resolved Firmware” column no further action is required to secure your system from this vulnerability.
  • Step 3: Intel recommends checking with your system OEM for updated firmware. Firmware versions that resolve the issue have a four digit build number that starts with a “3” (X.X.XX.3XXX) Ex: 8.1.71.3608.
  • Step 4: If a firmware update is not available from your OEM, follow Intel’s Mitigation Guide: https://downloadcenter.intel.com/download/26754
  • For assistance in implementing the mitigations steps provided in this document, please contact Intel Customer Support ; from the Technologies section, select Intel® Active Management Technology (Intel® AMT).
3

IMPACTED PRODUCTS


Commercial Desktops

Commercial Desktops, Thin Clients, and Retail Point of Sale Desktops


Product Impact Minimum ME FW required for fix Target available date Softpaq # / Link to download Last updated
HP 260 G1 Desktop Mini PC Not affected 05/03/2017
HP 260 G2 Desktop Mini PC Not affected 05/03/2017
HP Compaq 4000 Pro Small Form Factor PC Not affected 05/03/2017
HP Compaq 6000 Pro All-in-One PC Not affected 05/03/2017
HP Compaq 6000 Pro Series Not affected 05/03/2017
HP Compaq 6005 Pro Ultra-Slim Desktop PC Not affected 05/03/2017
HP Compaq 6200 Pro Microtower PC Affected 7.1.91.3272 Now Available sp80103

Release Notes
05/12/2017
HP Compaq 6200 Pro Small Form Factor PC Affected 7.1.91.3272 Now Available sp80103

Release Notes
05/12/2017
HP Compaq 8000 Elite Series Not affected 05/03/2017
HP Compaq 8000f Elite Ultra-slim PC Not affected 05/03/2017
HP Compaq 8100 Elite Convertible Minitower PC Affected 6.2.61.3535 Now Available sp80104

Release Notes
05/12/2017
HP Compaq 8100 Elite Small Form Factor PC Affected 6.2.61.3535 Now Available sp80104

Release Notes
05/12/2017
HP Compaq 8200 Elite All-in-One PC Affected 7.1.91.3272 Now Available sp80103

Release Notes
05/12/2017
HP Compaq 8200 Elite Convertible Minitower PC Affected 7.1.91.3272 Now Available sp80103

Release Notes
05/12/2017
HP Compaq 8200 Elite Microtower PC Affected 7.1.91.3272 Now Available sp80103

Release Notes
05/12/2017
HP Compaq 8200 Elite Small Form Factor PC Affected 7.1.91.3272 Now Available sp80103

Release Notes
05/12/2017
HP Compaq 8200 Elite Ultra-slim PC Affected 7.1.91.3272 Now Available sp80103

Release Notes
05/12/2017
HP Compaq Elite 8300 All-in-One PC Affected 8.1.71.3608 Now Available sp80102

Release Notes
05/12/2017
HP Compaq Elite 8300 Convertible Minitower PC Affected 8.1.71.3608 Now Available sp80102

Release Notes
05/12/2017
HP Compaq Elite 8300 Microtower PC Affected 8.1.71.3608 Now Available sp80102

Release Notes
05/12/2017
HP Compaq Elite 8300 Small Form Factor PC Affected 8.1.71.3608 Now Available sp80102

Release Notes
05/12/2017
HP Compaq Elite 8300 Touch All-in-One PC Affected 8.1.71.3608 Now Available sp80102

Release Notes
05/12/2017
HP Compaq Elite 8300 Ultra-slim PC Affected 8.1.71.3608 Now Available sp80102

Release Notes
05/12/2017
HP Compaq Pro 6300 All-in-One PC Affected 8.1.71.3608 Now Available sp80102

Release Notes
05/12/2017
HP Compaq Pro 6300 Microtower PC Affected 8.1.71.3608 Now Available sp80102

Release Notes
05/12/2017
HP Compaq Pro 6300 Small Form Factor PC Affected 8.1.71.3608 Now Available sp80102

Release Notes
05/12/2017
HP Compaq Pro 6305 Microtower PC Not affected 05/03/2017
HP Compaq Pro 6305 Small Form Factor PC Not affected 05/03/2017
HP Elite Slice Affected 11.0.18.3003 Now Available sp80346

Release Notes
05/19/2017
HP EliteDesk 700 G1 Microtower PC Affected 9.1.41.3024 Now Available sp80100

Release Notes
05/12/2017
HP EliteDesk 700 G1 Small Form Factor PC Affected 9.1.41.3024 Now Available sp80100

Release Notes
05/12/2017
HP EliteDesk 705 G1 Desktop Mini PC Not affected 05/03/2017
HP EliteDesk 705 G1 Microtower PC Not affected 05/03/2017
HP EliteDesk 705 G1 Small Form Factor PC Not affected 05/03/2017
HP EliteDesk 705 G2 Desktop Mini PC Not affected 05/03/2017
HP EliteDesk 705 G2 Small Form Factor PC Not affected 05/03/2017
HP EliteDesk 705 G3 Desktop Mini PC Not affected 05/03/2017
HP EliteDesk 705 G3 Microtower PC Not affected 05/03/2017
HP EliteDesk 705 G3 Small Form Factor PC Not affected 05/03/2017
HP EliteDesk 800 35W G2 Desktop Mini PC Affected 11.0.18.3003 Now Available sp80346

Release Notes
05/19/2017
HP EliteDesk 800 35W G3 Desktop Mini PC Affected 11.6.12.3202 Now Available sp80169

Release Notes
05/09/2017
HP EliteDesk 800 65W G2 Desktop Mini PC Affected 11.0.18.3003 Now Available sp80346

Release Notes
05/19/2017
HP EliteDesk 800 65W G3 Desktop Mini PC Affected 11.6.12.3202 Now Available sp80169

Release Notes
05/09/2017
HP EliteDesk 800 G1 Desktop Mini PC Affected 9.1.41.3024 Now Available sp80100

Release Notes
05/12/2017
HP EliteDesk 800 G1 Small Form Factor PC Affected 9.1.41.3024 Now Available sp80100

Release Notes
05/12/2017
HP EliteDesk 800 G1 Tower PC Affected 9.1.41.3024 Now Available sp80100

Release Notes
05/12/2017
HP EliteDesk 800 G1 Ultra-slim PC Affected 9.1.41.3024 Now Available sp80100

Release Notes
05/12/2017
HP EliteDesk 800 G2 Small Form Factor PC Affected 11.0.22.3001 Now Available sp80347

Release Notes
05/19/2017
HP EliteDesk 800 G2 Tower PC Affected 11.0.22.3001 Now Available sp80347

Release Notes
05/19/2017
HP EliteDesk 800 G3 Tower PC Affected 11.6.12.3202 Now Available sp80169

Release Notes
05/09/2017
HP EliteDesk 800 G3 Small Form Factor PC Affected 11.6.12.3202 Now Available sp80169

Release Notes
05/09/2017
HP EliteDesk 880 G1 Tower PC Affected 9.1.41.3024 Now Available sp80100

Release Notes
05/12/2017
HP EliteDesk 880 G2 Tower PC Affected 11.0.22.3001 Now Available sp80347

Release Notes
05/19/2017
HP EliteDesk 880 G3 Tower PC Affected 11.6.12.3202 Now Available sp80169

Release Notes
05/09/2017
HP EliteOne 705 G1 21-inch Non-Touch All-in-One PC Not affected 05/03/2017
HP EliteOne 705 G2 23-inch Touch All-in-One PC Not affected 05/03/2017
HP EliteOne 800 G1 21.5-inch Non-Touch All-in-One PC Affected 9.1.41.3024 Now Available sp80100

Release Notes
05/12/2017
HP EliteOne 800 G1 All-in-One PC Affected 9.1.41.3024 Now Available sp80100

Release Notes
05/12/2017
HP EliteOne 800 G2 23-inch Non-Touch All-in-One PC Affected 11.0.18.3003 Now Available sp80346

Release Notes
05/19/2017
HP EliteOne 800 G2 23-inch Touch All-in-One PC Affected 11.0.18.3003 Now Available sp80346

Release Notes
05/19/2017
HP EliteOne 800 G3 23.8-inch Non-Touch All-in-One PC Affected 11.6.12.3202 Now Available sp80169

Release Notes
05/09/2017
HP EliteOne 800 G3 23.8-inch Touch All-in-One PC Affected 11.6.12.3202 Now Available sp80169

Release Notes
05/09/2017
HP MP6 Digital Signage Player Affected 8.1.71.3608 Now Available sp80102

Release Notes
05/12/2017
HP MP9 G2 Retail System Affected 11.0.18.3003 Now Available sp80346

Release Notes
05/19/2017
HP MP9 Retail System Model 9000 Affected 9.1.41.3024 Now Available sp80100

Release Notes
05/12/2017
HP MultiSeat ms6200 Desktop Affected 7.1.91.3272 Now Available sp80103

Release Notes
05/12/2017
HP Pro 3500 G2 Microtower PC Not affected 05/03/2017
HP ProDesk 400 G1 Desktop Mini PC Not affected 05/03/2017
HP ProDesk 400 G1 Microtower PC Not affected 05/03/2017
HP ProDesk 400 G1 Small Form Factor PC Not affected 05/03/2017
HP ProDesk 400 G2 Desktop Mini PC Not affected 05/03/2017
HP ProDesk 400 G2 Microtower PC Not affected 05/03/2017
HP ProDesk 400 G3 Desktop Mini PC Not affected 05/03/2017
HP ProDesk 400 G3 Microtower PC Not affected 05/03/2017
HP ProDesk 400 G3 Small Form Factor PC Not affected 05/03/2017
HP ProDesk 400 G4 Microtower PC Not affected 05/03/2017
HP ProDesk 400 G4 Small Form Factor PC Not affected 05/03/2017
HP ProDesk 405 G1 Microtower PC Not affected 05/03/2017
HP ProDesk 405 G2 Microtower PC Not affected 05/03/2017
HP ProDesk 480 G1 Microtower PC Not affected 05/03/2017
HP ProDesk 480 G2 Microtower PC Not affected 05/03/2017
HP ProDesk 480 G3 Microtower PC Not affected 05/03/2017
HP ProDesk 480 G4 Microtower PC Not affected 05/03/2017
HP ProDesk 485 G1 Microtower PC Not affected 05/03/2017
HP ProDesk 485 G2 Microtower PC Not affected 05/03/2017
HP ProDesk 490 G1 Mictotower PC Not affected 05/03/2017
HP ProDesk 490 G2 Microtower PC Not affected 05/03/2017
HP ProDesk 490 G3 Microtower Not affected 05/03/2017
HP ProDesk 498 G1 Microtower PC Not affected 05/03/2017
HP ProDesk 498 G2 Microtower PC Not affected 05/03/2017
HP ProDesk 498 G3 Microtower Not affected 05/03/2017
HP ProDesk 600 G1 Desktop Mini PC Affected 9.1.41.3024 Now Available sp80100

Release Notes
05/12/2017
HP ProDesk 600 G1 Small Form Factor PC Affected 9.1.41.3024 Now Available sp80100

Release Notes
05/12/2017
HP ProDesk 600 G1 Tower PC Affected 9.1.41.3024 Now Available sp80100

Release Notes
05/12/2017
HP ProDesk 600 G2 Desktop Mini PC Affected 11.0.18.3003 Now Available sp80346

Release Notes
05/19/2017
HP ProDesk 600 G2 Microtower PC Affected 11.0.18.3003 Now Available sp80346

Release Notes
05/19/2017
HP ProDesk 600 G2 Small Form Factor PC Affected 11.0.18.3003 Now Available sp80346

Release Notes
05/19/2017
HP ProDesk 600 G3 Desktop Mini PC Affected 11.6.12.3202 Now Available sp80169

Release Notes
05/09/2017
HP ProDesk 600 G3 Microtower PC Affected 11.6.12.3202 Now Available sp80169

Release Notes
05/09/2017
HP ProDesk 600 G3 Small Form Factor PC Affected 11.6.12.3202 Now Available sp80169

Release Notes
05/09/2017
HP ProDesk 680 G1 Tower PC Affected 9.1.41.3024 Now Available sp80100

Release Notes
05/12/2017
HP ProDesk 680 G2 Microtower PC Affected 11.0.18.3003 Now Available sp80346

Release Notes
05/19/2017
HP ProDesk 680 G3 Microtower PC Affected 11.6.12.3202 Now Available sp80169

Release Notes
05/09/2017
HP ProOne 400 G1 19.5-inch Non-Touch All-in-One Not affected 05/03/2017
HP ProOne 400 G1 21.5-inch Touch All-in-One Not affected 05/03/2017
HP ProOne 400 G1 23-inch Non-Touch All-in-One Not affected 05/03/2017
HP ProOne 400 G2 20-inch Non-Touch All-in-One PC Not affected 05/03/2017
HP ProOne 400 G2 20-inch Touch All-in-One PC Not affected 05/03/2017
HP ProOne 460 G2 20-inch Non-Touch All-in-One PC Not affected 05/03/2017
HP ProOne 480 G2 20-inch Non-Touch All-in-One PC Not affected 05/03/2017
HP ProOne 600 G1 All-in-One PC Affected 9.1.41.3024 Now Available sp80100

Release Notes
05/12/2017
HP ProOne 600 G2 21.5-inch Non-Touch All-in-One PC Affected 11.0.18.3003 Now Available sp80346

Release Notes
05/19/2017
HP ProOne 600 G2 21.5-inch Touch All-in-One PC Affected 11.0.18.3003 Now Available sp80346

Release Notes
05/19/2017
HP RP2 Retail System Model 2000 Not affected 05/03/2017
HP RP2 Retail System Model 2020 Not affected 05/03/2017
HP RP2 Retail System Model 2030 Not affected 05/03/2017
HP RP3 Retail System Model 3100 Not affected 05/03/2017
HP RP5 Retail System Model 5810 Affected 9.1.41.3024 Now Available sp80100

Release Notes
05/12/2017
HHP rp5800 Retail System Affected 7.1.91.3272 Now Available sp80103

Release Notes
05/12/2017
HP RP7 Retail System Model 7800 Affected 7.1.91.3272 Now Available sp80103

Release Notes
05/12/2017
HP RP7 Retail System Model 7100 Not affected 05/03/2017
HP RP9 G1 AiO Retail System Model 9015 Affected 11.0.18.3003 Now Available sp80346

Release Notes
05/19/2017
HP RP9 G1 AiO Retail System Model 9018 Affected 11.0.18.3003 Now Available sp80346

Release Notes
05/19/2017
HP SignagePlayer mp8200 Affected 7.1.91.3272 Now Available sp80103

Release Notes
05/12/2017
HP SignagePlayer mp8200s Affected 7.1.91.3272 Now Available sp80103

Release Notes
05/12/2017
HP t420 Flexible Thin Client Not affected 05/03/2017
HP t520 Flexible Thin Client Not affected 05/03/2017
HP t530 Flexible Thin Client Not affected 05/03/2017
HP t610 Flexible Thin Client Not affected 05/03/2017
HP t610 PLUS Flexible Thin Client Not affected 05/03/2017
HP t620 Flexible Thin Client Not affected 05/03/2017
HP t628 Flexible Thin Client Not affected 05/03/2017
HP t630 Flexible Thin Client Not affected 05/03/2017
HP t730 Flexible Thin Client Not affected 05/03/2017
HP t820 Flexible Thin Client Affected 9.1.41.3024 Now Available sp80100

Release Notes
05/12/2017

Desktop Workstations

Desktop Workstations


Product Impact Minimum ME FW required for fix Target available date Softpaq # / Link to download Last updated
HP Z1 Workstation Affected 7.1.91.3272 Now available sp80506

Release Notes
05/30/2017
HP Z1 Workstation Affected 7.1.91.3272 Now available sp80507 (Linux)

Release Notes
05/30/2017
HP Z1 Workstation Affected 8.1.71.3608 Now available sp80089

Release Notes
05/08/2017
HP Z1 Workstation Affected 8.1.71.3608 Now available sp80151 (Linux)

Release Notes
10/05/2017
HP Z1 G2 Workstation Affected 9.1.41.3024 Now available sp80087

Release Notes
05/08/2017
HP Z1 G2 Workstation Affected 9.1.41.3024 Now available sp80150 (Linux)

Release Notes
10/05/2017
HP Z1 G3 Workstation Affected 11.6.27.3264 Now available sp79976

Release Notes
05/05/2017
HP Z1 G3 Workstation Affected 11.6.27.3264 Now available sp80094 (Linux)

Release Notes
5/12/2017
HP Z2 Mini G3 Workstation Affected 11.6.27.3264 Now available sp79976

Release Notes
05/05/2017
HP Z2 Mini G3 Workstation Affected 11.6.27.3264 Now available sp80094 (Linux)

Release Notes
5/12/2017
HP Z200 Workstation Affected 6.2.61.3535 Now available sp80262

Release Notes
5/15/2017
HP Z200 Workstation Affected 6.2.61.3535 Now available sp80261 (Linux)

Release Notes
5/15/2017
HP Z200 Workstation SFF Affected 6.2.61.3535 Now available sp80262

Release Notes
5/15/2017
HP Z200 Workstation SFF Affected 6.2.61.3535 Now available sp80261 (Linux)

Release Notes
5/15/2017
HP Z210 Convertible Minitower Workstation Affected 7.1.91.3272 Now available sp80092

Release Notes
05/08/2017
HP Z210 Convertible Minitower Workstation Affected 7.1.91.3272 Now available sp80153 (Linux)

Release Notes
5/12/2017
HP Z210 Small Form Factor Workstation Affected 7.1.91.3272 Now available sp80092

Release Notes
05/08/2017
HP Z210 Small Form Factor Workstation Affected 7.1.91.3272 Now available sp80153 (Linux)

Release Notes
5/12/2017
HP Z220 CMT Workstation Affected 8.1.71.3608 Now available sp80089

Release Notes
05/08/2017
HP Z220 CMT Workstation Affected 8.1.71.3608 Now available sp80151 (Linux)

Release Notes
10/05/2017
HP Z220 SFF Workstation Affected 8.1.71.3608 Now available sp80089

Release Notes
05/08/2017
HP Z220 SFF Workstation Affected 8.1.71.3608 Now available sp80151 (Linux)

Release Notes
10/05/2017
HP Z228 Microtower Workstation Affected 9.1.41.3024 Now available sp80087

Release Notes
05/08/2017
HP Z228 Microtower Workstation Affected 9.1.41.3024 Now available sp80150 (Linux)

Release Notes
10/05/2017
HP Z230 MT Workstation Affected 9.1.41.3024 Now available sp80087

Release Notes
05/08/2017
HP Z230 MT Workstation Affected 9.1.41.3024 Now available sp80150 (Linux)

Release Notes
10/05/2017
HP Z230 SFF Workstation Affected 9.1.41.3024 Now available sp80087

Release Notes
05/08/2017
HP Z230 SFF Workstation Affected 9.1.41.3024 Now available sp80150 (Linux)

Release Notes
10/05/2017
HP Z238 Microtower Workstation Affected 11.6.27.3264 Now available sp79976

Release Notes
05/05/2017
HP Z238 Microtower Workstation Affected 11.6.27.3264 Now available sp80094 (Linux)

Release Notes
05/12/2017
HP Z240 SFF Workstation Affected 11.6.27.3264 Now available sp79976

Release Notes
05/05/2017
HP Z240 SFF Workstation Affected 11.6.27.3264 Now available sp80094 (Linux)

Release Notes
05/12/2017
HP Z240 Tower Workstation Affected 11.6.27.3264 Now available sp79976

Release Notes
05/08/2017
HP Z240 Tower Workstation Affected 11.6.27.3264 Now available sp80094 (Linux)

Release Notes
05/12/2017
HP Z400 Workstation Not affected 05/09/2017
HP Z420 Workstation (J61 v1.xx) Affected 7.1.91.3272 Now available sp80091

Release Notes
05/08/2017
HP Z420 Workstation (J61 v1.xx) Affected 7.1.91.3272 Now available sp80154 (Linux)

Release Notes
10/05/2017
HP Z420 Workstation (J61 v2.xx, v3.xx) Affected 8.1.71.3608 Now available sp80090

Release Notes
05/08/2017
HP Z420 Workstation (J61 v2.xx, v3.xx) Affected 8.1.71.3608 Now available sp80152 (Linux)

Release Notes
05/12/2017
HP Z440 Workstation Affected 9.1.41.3024 Now available sp80050

Release Notes
05/08/2017
HP Z440 Workstation Affected 9.1.41.3024 Now available sp80149 (Linux)

Release Notes
10/05/2017
HP Z600 Workstation Not affected 05/09/2017
HP Z620 Workstation (J61 v1.xx) Affected 7.1.91.3272 Now available sp80091

Release Notes
05/08/2017
HP Z620 Workstation (J61 v1.xx) Affected 7.1.91.3272 Now available sp80154 (Linux)

Release Notes
10/05/2017
HP Z620 Workstation (J61 v2.xx, v3.xx) Affected 8.1.71.3608 Now available sp80090

Release Notes
05/08/2017
HP Z620 Workstation (J61 v2.xx, v3.xx) Affected 8.1.71.3608 Now available sp80152 (Linux)

Release Notes
05/12/2017
HP Z640 Workstation Affected 9.1.41.3024 Now available sp80050

Release Notes
05/08/2017
HP Z640 Workstation Affected 9.1.41.3024 Now available sp80149 (Linux)

Release Notes
10/05/2017
HP Z800 Workstation Not affected 05/09/2017
HP Z820 Workstation (J63 v1.xx) Affected 7.1.91.3272 Now available sp80091

Release Notes
05/08/2017
HP Z820 Workstation (J63 v1.xx) Affected 7.1.91.3272 Now available sp80154 (Linux)

Release Notes
10/05/2017
HP Z820 Workstation (J63 v2.xx, v3.xx) Affected 8.1.71.3608 Now available sp80090

Release Notes
05/08/2017
HP Z820 Workstation (J63 v2.xx, v3.xx) Affected 8.1.71.3608 Now available sp80152 (Linux)

Release Notes
05/12/2017
HP Z840 Workstation Affected 9.1.41.3024 Now available sp80050

Release Notes
05/08/2017
HP Z840 Workstation Affected 9.1.41.3024 Now available sp80149 (Linux)

Release Notes
10/05/2017

Commercial Notebooks

Commercial Notebooks, Mobile Workstations, and Mobile Thin Clients


Product Impact Minimum ME FW required for fix Target available date Softpaq # / Link to download Last updated
HP 6360t Mobile Thin Client Affected 9.1.41.3024 Now Available sp80139

Release Notes
05/12/2017
HP Elite x2 1011 G1 Tablet Affected 10.0.55.3000 Now Available sp80099

Release Notes
05/12/2017
HP Elite x2 1012 G1 Affected 11.0.18.3003 Now Available sp80341

Release Notes
05/19/2017
HP EliteBook 1040 G2 Affected 10.0.55.3000 Now Available sp80099

Release Notes
05/12/2017
HP EliteBook 2170p Affected 8.1.71.3608 Now Available sp80195

Release Notes
05/12/2017
HP EliteBook 2540p Affected 6.2.61.3535 Now Available sp80146

Release Notes
05/12/2017
HP EliteBook 2560p Affected 7.1.91.3272 Now Available sp80144

Release Notes
05/12/2017
HP EliteBook 2570p Affected 8.1.71.3608 Now Available sp80195

Release Notes
05/12/2017
HP EliteBook 2740p Affected 6.2.61.3535 Now Available sp80146

Release Notes
05/12/2017
HP EliteBook 2760p Affected 7.1.91.3272 Now Available sp80144

Release Notes
05/12/2017
HP EliteBook 720 G1 Affected 9.5.61.3012 Now Available sp80145

Release Notes
05/12/2017
HP EliteBook 720 G2 Affected 10.0.55.3000 Now Available sp80099

Release Notes
05/12/2017
HP EliteBook 725 G2 Not affected 05/03/2017
HP EliteBook 725 G3 Not affected 05/03/2017
HP EliteBook 725 G4 Not affected 05/03/2017
HP EliteBook 740 G1 Affected 9.5.61.3012 Now Available sp80145

Release Notes
05/12/2017
HP EliteBook 740 G2 Affected 10.0.55.3000 Now Available sp80099

Release Notes
05/12/2017
HP EliteBook 745 G2 Not affected 05/03/2017
HP EliteBook 745 G3 Not affected 05/03/2017
HP EliteBook 745 G4 Not affected 05/03/2017
HP EliteBook 750 G1 Affected 9.5.61.3012 Now Available sp80145

Release Notes
05/12/2017
HP EliteBook 750 G2 Affected 10.0.55.3000 Now Available sp80099

Release Notes
05/12/2017
HP EliteBook 755 G2 Not affected 05/03/2017
HP EliteBook 755 G3 Not affected 05/03/2017
HP EliteBook 755 G4 Not affected 05/03/2017
HP EliteBook 820 G1 Affected 9.5.61.3012 Now Available sp80145

Release Notes
05/12/2017
HP EliteBook 820 G2 Affected 10.0.55.3000 Now Available sp80099

Release Notes
05/12/2017
HP EliteBook 820 G3 Affected 11.0.18.3003 Now Available sp80341

Release Notes
05/19/2017
HP EliteBook 820 G4 Affected 11.6.12.3202 Now Available sp80247

Release Notes
05/12/2017
HP EliteBook 828 G3 Affected 11.0.18.3003 Now Available sp80341

Release Notes
05/19/2017
HP EliteBook 828 G4 Affected 11.6.12.3202 Now Available sp80247

Release Notes
05/09/2017
HP EliteBook 840 G1 Affected 9.5.61.3012 Now Available sp80145

Release Notes
05/12/2017
HP EliteBook 840 G2 Affected 10.0.55.3000 Now Available sp80099

Release Notes
05/12/2017
HP EliteBook 840 G3 Affected 11.0.18.3003 Now Available sp80341

Release Notes
05/19/2017
HP Elitebook 840 G4 Affected 11.6.12.3202 Now Available sp80247

Release Notes
05/09/2017
HP EliteBook 8440p Affected 6.2.61.3535 Now Available sp80146

Release Notes
05/12/2017
HP EliteBook 8440w Mobile Workstation Affected 6.2.61.3535 Now Available sp80146

Release Notes
05/12/2017
HP EliteBook 8460p Affected 7.1.91.3272 Now Available sp80144

Release Notes
05/12/2017
HP EliteBook 8460w Mobile Workstation Affected 7.1.91.3272 Now Available sp80144

Release Notes
05/12/2017
HP EliteBook 8470p Affected 8.1.71.3608 Now Available sp80195

Release Notes
05/12/2017
HP EliteBook 8470w Mobile Workstation Affected 8.1.71.3608 Now Available sp80195

Release Notes
05/12/2017
HP EliteBook 848 G3 Affected 11.0.18.3003 Now Available sp80174

Release Notes
05/09/2017
HP EliteBook 848 G4 Affected 11.6.12.3202 Now Available sp80247

Release Notes
05/12/2017
HP EliteBook 850 G1 Affected 9.5.61.3012 Now Available sp80145

Release Notes
05/12/2017
HP EliteBook 850 G2 Affected 10.0.55.3000 Now Available sp80099

Release Notes
05/12/2017
HP EliteBook 850 G3 Notebook PC Affected 11.0.18.3003 Now Available sp80341

Release Notes
05/19/2017
HP EliteBook 8540p Affected 6.2.61.3535 Now Available sp80146

Release Notes
05/12/2017
HP EliteBook 8540w Mobile Workstation Affected 6.2.61.3535 Now Available sp80146

Release Notes
05/12/2017
HP EliteBook 8560p Affected 7.1.91.3272 Now Available sp80144

Release Notes
05/12/2017
HP EliteBook 8560w Mobile Workstation Affected 7.1.91.3272 Now Available sp80144

Release Notes
05/12/2017
HP EliteBook 8570p Affected 8.1.71.3608 Now Available sp80195

Release Notes
05/12/2017
HP EliteBook 8570w Mobile Workstation Affected 8.1.71.3608 Now Available sp80195

Release Notes
05/12/2017
HP EliteBook 8740w Mobile Workstation Affected 6.2.61.3535 Now Available sp80146

Release Notes
05/12/2017
HP EliteBook 8760w Mobile Workstation Affected 7.1.91.3272 Now Available sp80144

Release Notes
05/12/2017
HP EliteBook 8770w Mobile Workstation Affected 8.1.71.3608 Now Available sp80195

Release Notes
05/12/2017
HP EliteBook Folio 1020 G1 Affected 10.0.55.3000 Now Available sp80099

Release Notes
05/12/2017
HP EliteBook Folio 1030 G1 Affected 11.0.18.3003 Now Available sp80341

Release Notes
05/19/2017
HP EliteBook Folio 1040 G1 Affected 9.5.61.3012 Now Available sp80145

Release Notes
05/12/2017
HP EliteBook Folio 1040 G3 Affected 11.0.18.3003 Now Available sp80341

Release Notes
05/19/2017
HP EliteBook Folio 9470m Affected 8.1.71.3608 Now Available sp80195

Release Notes
05/12/2017
HP EliteBook Folio 9480m Affected 9.5.61.3012 Now Available sp80145

Release Notes
05/12/2017
HP EliteBook Folio G1 Affected 11.0.18.3003 Now Available sp80341

Release Notes
05/19/2017
HP EliteBook Revolve 810 Affected Now Available sp80195

Release Notes
05/12/2017
HP EliteBook Revolve 810 G2 Affected 9.5.61.3012 Now Available sp80145

Release Notes
05/12/2017
HP EliteBook Revolve 810 G3 Affected 10.0.55.3000 Now Available sp80099

Release Notes
05/12/2017
HP EliteBook x360 1030 G2 Affected 11.6.12.3202 Now Available sp80247

Release Notes
05/12/2017
HP mt42 Mobile Thin Client Not affected 05/05/2017
HP mt43 Mobile Thin Client Not affected 05/05/2017
HP Omni 10 Not affected 05/05/2017
HP Pro Tablet 610 G1 Not affected 05/05/2017
HP ElitePad 1000 G2 Not affected 05/03/2017
HP ElitePad 900 Not affected 05/03/2017
HP mt40 Mobile Thin Client Not affected 05/03/2017
HP mt41 Mobile Thin Client Not affected 05/03/2017
HP Pro Tablet 608 G1 Not affected 05/03/2017
HP Pro X2 612 G2 Affected 11.6.12.3202 Now Available sp80247

Release Notes
05/12/2017
HP ProBook 11 EE G1 Not affected 05/03/2017
HP ProBook 11 EE G2 Not affected 05/03/2017
HP ProBook 4230s Not affected 05/03/2017
HP ProBook 430 G1 Not affected 05/03/2017
HP ProBook 430 G2 Not affected 05/03/2017
HP ProBook 430 G3 Not affected 05/03/2017
HP ProBook 430 G4 Not affected 05/03/2017
HP ProBook 4330s Not affected 05/03/2017
HP ProBook 4331s Not affected 05/03/2017
HP ProBook 4340s Not affected 05/03/2017
HP ProBook 4341s Not affected 05/03/2017
HP ProBook 440 G0 Not affected 05/03/2017
HP ProBook 440 G1 Not affected 05/03/2017
HP ProBook 440 G2 Not affected 05/03/2017
HP ProBook 440 G3 Not affected 05/03/2017
HP ProBook 440 G4 Not affected 05/03/2017
HP ProBook 4430s Not affected 05/03/2017
HP ProBook 4431s Not affected 05/03/2017
HP ProBook 4435s Not affected 05/03/2017
HP ProBook 4436s Not affected 05/03/2017
HP ProBook 4440s Not affected 05/03/2017
HP ProBook 4441s Not affected 05/03/2017
HP ProBook 4445s Not affected 05/03/2017
HP ProBook 4446s Not affected 05/03/2017
HP ProBook 445 G1 Not affected 05/03/2017
HP ProBook 445 G2 Not affected 05/03/2017
HP ProBook 446 G3 Not affected 05/03/2017
HP ProBook 450 G0 Not affected 05/03/2017
HP ProBook 450 G1 Not affected 05/03/2017
HP ProBook 450 G2 Not affected 05/03/2017
HP ProBook 450 G3 Not affected 05/03/2017
HP ProBook 450 G4 Not affected 05/03/2017
HP ProBook 4530s Not affected 05/03/2017
HP ProBook 4535s Not affected 05/03/2017
HP ProBook 4540s Not affected 05/03/2017
HP ProBook 4545s Not affected 05/03/2017
HP ProBook 455 G1 Not affected 05/03/2017
HP ProBook 455 G2 Not affected 05/03/2017
HP ProBook 455 G3 Not affected 05/03/2017
HP ProBook 455 G4 Not affected 05/03/2017
HP ProBook 470 G0 Not affected 05/03/2017
HP ProBook 470 G1 Not affected 05/03/2017
HP ProBook 470 G2 Not affected 05/03/2017
HP ProBook 470 G3 Not affected 05/03/2017
HP ProBook 470 G4 Not affected 05/03/2017
HP ProBook 4730s Not affected 05/03/2017
HP ProBook 4740s Not affected 05/03/2017
HP ProBook 5330m Affected 7.1.91.3272 Now Available sp80144

Release Notes
05/12/2017
HP ProBook 6360b Affected 7.1.91.3272 Now Available sp80144

Release Notes
05/12/2017
HP ProBook 640 G1 Affected 9.1.41.3024 Now Available sp80139

Release Notes
05/12/2017
HP ProBook 640 G2 Affected 11.0.18.3003 Now Available sp80341

Release Notes
05/19/2017
HP ProBook 640 G3 Affected 11.6.12.3202 Now Available sp80247

Release Notes
05/12/2017
HP ProBook 645 G1 Not affected 05/03/2017
HP ProBook 645 G2 Not affected 05/03/2017
HP ProBook 645 G3 Not affected 05/03/2017
HP ProBook 6450b Affected 6.2.61.3535 Now Available sp80146

Release Notes
05/12/2017
HP ProBook 6460b Affected 7.1.91.3272 Now Available sp80144

Release Notes
05/12/2017
HP ProBook 6465b Not affected 05/03/2017
HP ProBook 6470b Affected 8.1.71.3608 Now Available sp80195

Release Notes
05/12/2017
HP Probook 6475b Not affected 05/03/2017
HP ProBook 650 G1 Affected 9.1.41.3024 Now Available sp80139

Release Notes
05/12/2017
HP ProBook 650 G2 Affected 11.0.18.3003 Now Available sp80341

Release Notes
05/19/2017
HP ProBook 650 G3 Affected 11.6.12.3202 Now Available sp80247

Release Notes
05/12/2017
HP EliteBook 850 G4 Affected 11.6.12.3202 Now Available sp80247

Release Notes
05/09/2017
HP ProBook 655 G1 Not affected 05/03/2017
HP ProBook 655 G2 Not affected 05/03/2017
HP ProBook 655 G3 Not affected 05/03/2017
HP ProBook 6550b Affected 6.2.61.3535 Now Available sp80146

Release Notes
05/12/2017
HP ProBook 6560b Affected 7.1.91.3272 Now Available sp80144

Release Notes
05/12/2017
HP ProBook 6565b Not affected 05/03/2017
HP ProBook 6570b Affected 8.1.71.3608 Now Available sp80195

Release Notes
05/12/2017
HP ProBook X2 612 G1 Tablet Affected 9.5.61.3012 Now Available sp80145

Release Notes
05/12/2017
HP ProBook x360 11 G1 Not affected 05/03/2017
HP Spectre Pro x360 G1 Convertible PC Affected 10.0.55.3000 Now Available sp80275

Release Notes
05/18/2017
HP Spectre Pro x360 G2 Convertible PC Affected 11.0.25.3001 Now Available Sp80276

Release Notes
05/18/2017
HP ZBook 14 G2 Mobile Workstation Affected 10.0.55.3000 Now Available sp80099

Release Notes
05/12/2017
HP ZBook 14 Mobile Workstation Affected 9.5.61.3012 Now Available sp80145

Release Notes
05/12/2017
HP ZBook 15 G2 Mobile Workstation Affected 9.1.41.3024 Now Available sp80139

Release Notes
05/12/2017
HP ZBook 15 G3 Mobile Workstation Affected 11.0.18.3003 Now Available sp80341

Release Notes
05/19/2017
HP ZBook 15 G4 Affected 11.6.12.3202 Now Available sp80247

Release Notes
05/09/2017
HP ZBook 17 G4 Affected 11.6.12.3202 Now Available sp80247

Release Notes
05/09/2017
HP ZBook 15 Mobile Workstation Affected 9.1.41.3024 Now Available sp80139

Release Notes
05/12/2017
HP ZBook 15u G2 Mobile Workstation Affected 10.0.55.3000 Now Available sp80099

Release Notes
05/12/2017
HP ZBook 15u G3 Mobile Workstation Affected 11.0.18.3003 Now Available sp80341

Release Notes
05/19/2017
HP ZBook 15u G4 Mobile Workstation Affected 11.6.12.3202 Now Available sp80247

Release Notes
05/09/2017
HP ZBook 17 G2 Mobile Workstation Affected 9.1.41.3024 Now Available sp80139

Release Notes
05/12/2017
HP ZBook 17 G3 Mobile Workstation Affected 11.0.18.3003 Now Available sp80341

Release Notes
05/19/2017
HP ZBook 17 Mobile Workstation Affected 9.1.41.3024 Now Available sp80139

Release Notes
05/12/2017
HP ZBook Studio G3 Mobile Workstation Affected 11.0.18.3003 Now Available sp80341

Release Notes
05/19/2017
HP ZBook Studio G4 Mobile Workstation Affected 11.6.12.3202 Now Available sp80247

Release Notes
05/09/2017
HP ProBook 430 G4 (vPro) Affected 11.6.12.3202 Now Available sp80245

Release Notes
05/09/2017

System management and security procedures must be reviewed frequently to maintain system integrity. HP is continually reviewing and enhancing the security features of software products to provide customers with current secure solutions.


"HP is broadly distributing this Security Bulletin to alert users of affected HP products about the important security information contained in this Bulletin. HP recommends that all users determine the applicability of this information to their individual situations and take appropriate action. HP does not warrant that this information is necessarily accurate or complete for all user situations and, consequently, HP will not be responsible for any damages resulting from user's use or disregard of the information provided in this Bulletin. To the extent permitted by law, HP disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose, title and non-infringement."


REVISION HISTORY Version 8 - 5/13/2017


Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.


Support: For questions regarding the implementation of the recommendations contained in this Security Bulletin, please contact your normal HP Services support channel. For other issues concerning the content of this Security Bulletin, please send an e-mail with your questions to hp-security-alert@hp.com


Report To report a potential security vulnerability with any HP supported product, send email to: hp­security­alert@hp.com


Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email, visit https://h41369.www4.hp.com/alerts-signup.php?lang=en&cc=US&jumpid=hpsc_profile


Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB.


  • PI = HP Printing and Imaging
  • HF = HP Hardware and Firmware
  • ST = HP Storage Software
  • GN = HP General Software

Support: For further information, contact normal HP Services support channel.


Report: To report a potential security vulnerability with any HP supported product, send Email to: hp-security-alert@hp.com


It is strongly recommended that security related information being communicated to HP be encrypted using PGP, especially exploit information.


To get the security-alert PGP key, please send an e-mail message as follows:


To: hp-security-alert@hp.com


Subject: get key


© Copyright 2017 HP Development Company, L.P.


HP Inc. shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental, special or consequential damages including downtime cost; lost profits; damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. HP Inc. and the names of HP products referenced herein are trademarks of HP Inc. in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners.


Back to top