cbcvebase.
CVE-2021-3437
published 2022-12-12

CVE-2021-3437: Potential security vulnerabilities have been identified in an OMEN Gaming Hub SDK package which may allow escalation of privilege and/or denial of service. HP…

PriorityP359critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
15.55%
96.4th percentile
Potential security vulnerabilities have been identified in an OMEN Gaming Hub SDK package which may allow escalation of privilege and/or denial of service. HP is releasing software updates to mitigate the potential vulnerabilities.

Affected

10 ranges
VendorProductVersion rangeFixed in
heimdal_projectheimdal>= 0 < 7.5.0+dfsg-1ubuntu0.37.5.0+dfsg-1ubuntu0.3
heimdal_projectheimdal>= 0 < 7.7.0+dfsg-1ubuntu1.37.7.0+dfsg-1ubuntu1.3
heimdal_projectheimdal>= 0 < 1.6~git20131207+dfsg-1ubuntu1.2+esm31.6~git20131207+dfsg-1ubuntu1.2+esm3
heimdal_projectheimdal>= 0 < 1.7~git20150920+dfsg-4ubuntu1.16.04.1+esm31.7~git20150920+dfsg-4ubuntu1.16.04.1+esm3
hpomen_gaming_hub< 11.6.3.011.6.3.0
hpomen_gaming_hub_sdk< 1.0.441.0.44
hp_incomen_gaming_hub_sdk
sambasamba>= 0 < 2:4.13.17~dfsg-0ubuntu1.20.04.42:4.13.17~dfsg-0ubuntu1.20.04.4
sambasamba>= 0 < 2:4.13.17~dfsg-0ubuntu1.20.04.52:4.13.17~dfsg-0ubuntu1.20.04.5
sambasamba>= 0 < 2:4.15.13+dfsg-0ubuntu12:4.15.13+dfsg-0ubuntu1

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
osv7.5HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.