CVE-2022-27538 - Unpacking a TOCTOU BIOS Vulnerability in HP PCs – Details, Exploit Paths, and Mitigation
A significant BIOS-level security issue, tracked as CVE-2022-27538, has been uncovered in some HP PC products. This bug, classified as a Time-of-Check to Time-of-Use (TOCTOU)
CVE-2022-23454 - Inside the Exploit Chain of HP Support Assistant Vulnerabilities
HP Support Assistant is a utility shipped with millions of HP computers for updates and troubleshooting. In late 2022, security researchers discovered multiple vulnerabilities in