Serious security flaw is found in HP gaming notebooks and desktops

Several models were affected by the crash.

if you have a HP notebook or desktop, beware of a failure caused by a vulnerability through a specific driver, allowed attacks that access the PC as administrator and get disable any security, Besides deploy malicious files.

The security breach is identified as CVE-2021-3437 e was found in the driver used by the application Omen Gaming Hub that comes pre-installed on HP computers and notebooks. The application can be downloaded and installed manually as well. Below is the list of affected series and models:

Notebooks

  • HP Pavilion Gaming Laptop 15-dk2xx/ec2xx
  • HP Pavilion Gaming Laptop 16-a0xxx
  • OMEN by HP Laptop 15-ce0xx/ce1xx/dc0xxx/dc1xxx/dc2xxx/dh0xxx/dh1xxx
  • OMEN by HP Laptop 17-an0xx/an1xx/cb0xxx/cb1xxx
  • OMEN Laptop 15-ek0xxx/ek1xxx/en0xxx/en1xxx
  • OMEN X by HP 2S Laptop 15-dg0xxx
  • OMEN X by HP Laptop 17-ap0xx

Desktop


– Continues after advertising –

  • HP ENVY TE01-0xxx/1xxx/2xxx
  • HP Pavilion Gaming TG01-0xxxa/1xxxa/0xxxi/1xxxi/2xxx
  • HP Pavilion TP01-0xxx/1xxx
  • HP ENVY TE01-2xxx
  • OMEN by HP 880-0xx/1xx/5xx
  • OMEN Desktop PC 30L GT13-0xxxa/0xxxi/1xxxi
  • OMEN Desktop PC 25L GT11-0xxxa/0xxxi
  • OMEN Desktop PC 25L GT12-0xxxa/0xxxi
  • OMEN 25L Desktop PC GT12-1000i
  • OMEN 25L Desktop PC GT11-1000i
  • OMEN X by HP P1000-0xx
  • OMEN by HP Obelisk 875-0xxx/1xxx
  • OMEN by HP 873-0xxx
  • OMEN X by HP 900-1xx/2xx

The main reason for the existence of the failure is the consequence of choosing HP in use vulnerable code copied from WinRingo.sys, an open source driver, in the creation of the HpPortIox64.sys driver found in the Omen Gaming Hub, which is responsible for reading and writing Kernel memory, PCI settings, IO ports and MSRs (Model-Specific Registers).

The Omen Gaming Hub program offers different profile creation, LED adjustment, overclocking among other functions. The app can be downloaded from the Microsoft store on any computer, which can raise the number of PCs impacted by this failure by millions.

According to a publication of the SentinelOne, the vulnerability in the driver can take any unprivileged user to the system. “If this severe flaw is exploited, it could allow any user on the computer, even without privileges, to change those privileges and access the kernel.” Once inside, an attacker could overwrite any files and exchange them for malicious ones, corrupt the system, and more.


– Continues after advertising –

HP was already aware of the issue and the Omen Gaming Hub already had a patched update in July. The publication of SentinelOne has now come to alert any owner of HP computers to protect themselves with the update.

Earlier this year, SentinelOne had encountered a 16-year flaw in HP, Xerox, and Samsung printer drivers, as well as another 12-year flaw in Microsoft Defender Antivirus, which gave attackers administrator privileges.

…..

Are you thinking of buying a product online? Discover the Adrenaline Save extension for Google Chrome. It is free and offers you price comparisons in the main stores and coupons so you can always buy at the best price. Download now.

Via: Bleeping Computer

Leave a Comment