Potential time-of-check to time-of-use (TOCTOU) vulnerabilities have been identified in the BIOS for certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure.

Related CVEs

CVE-2022-31636

Key Information

GHSA ID

GHSA-9m5f-j2g3-2fcr

Published

June 13, 2023 6:30 PM

Last Modified

April 4, 2024 4:47 AM

CVSS Score

7.5 /10

Primary Ecosystem

Unknown

Primary Package

Unknown

GitHub Reviewed

✗ No

Dataset

Last updated: June 30, 2025 6:26 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.