CVE & CISA-KEV Catalog

CVE-2021-39300

HIGH
8.8
CVSS v3
NVD

Description

Potential vulnerabilities have been identified in UEFI firmware (BIOS) for some PC products which may allow escalation of privilege and arbitrary code execution.

How to fix

Remediation Available
elite dragonfly firmwareNVD
Affected:< 01.12.00Fixed in:01.12.00CVE-2021-39300derived from NVD
elite dragonfly g2 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
elite dragonfly max firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
elite x2 1013 g3 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
elite x2 g4 firmwareNVD
Affected:< 01.12.00Fixed in:01.12.00CVE-2021-39300derived from NVD
elite x2 g8 tablet firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
elitebook 1050 g1 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
elitebook 830 g5 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
elitebook 830 g6 firmwareNVD
Affected:< 01.12.00Fixed in:01.12.00CVE-2021-39300derived from NVD
elitebook 830 g7 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
elitebook 830 g8 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
elitebook 836 g5 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
elitebook 836 g6 firmwareNVD
Affected:< 01.12.00Fixed in:01.12.00CVE-2021-39300derived from NVD
elitebook 840 aero g8 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
elitebook 840 g5 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
elitebook 840 g5 healthcare edition firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
elitebook 840 g6 firmwareNVD
Affected:< 01.12.00Fixed in:01.12.00CVE-2021-39300derived from NVD
elitebook 840 g6 healthcare edition firmwareNVD
Affected:< 01.12.00Fixed in:01.12.00CVE-2021-39300derived from NVD
elitebook 840 g7 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
elitebook 840 g8 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
elitebook 840r g4 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
elitebook 846 g5 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
elitebook 850 g5 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
elitebook 850 g6 firmwareNVD
Affected:< 01.12.00Fixed in:01.12.00CVE-2021-39300derived from NVD
elitebook 850 g7 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
elitebook 850 g8 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
elitebook x360 1030 g3 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
elitebook x360 1030 g4 firmwareNVD
Affected:< 01.12.00Fixed in:01.12.00CVE-2021-39300derived from NVD
elitebook x360 1030 g7 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
elitebook x360 1030 g8 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
elitebook x360 1040 g5 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
elitebook x360 1040 g6 firmwareNVD
Affected:< 01.12.00Fixed in:01.12.00CVE-2021-39300derived from NVD
elitebook x360 1040 g7 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
elitebook x360 1040 g8 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
elitebook x360 830 g5 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
elitebook x360 830 g6 firmwareNVD
Affected:< 01.12.00Fixed in:01.12.00CVE-2021-39300derived from NVD
elitebook x360 830 g7 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
elitebook x360 830 g8 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
engage flex mini retail system firmwareNVD
Affected:< 02.10.00Fixed in:02.10.00CVE-2021-39300derived from NVD
mp9 g4 retail system firmwareNVD
Affected:< 02.18.00Fixed in:02.18.00CVE-2021-39300derived from NVD
probook 430 g5 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
probook 430 g6 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
probook 430 g7 firmwareNVD
Affected:< 01.12.00Fixed in:01.12.00CVE-2021-39300derived from NVD
probook 430 g8 firmwareNVD
Affected:< 01.08.02Fixed in:01.08.02CVE-2021-39300derived from NVD
probook 440 g5 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
probook 440 g6 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
probook 440 g7 firmwareNVD
Affected:< 01.12.00Fixed in:01.12.00CVE-2021-39300derived from NVD
probook 440 g8 firmwareNVD
Affected:< 01.08.02Fixed in:01.08.02CVE-2021-39300derived from NVD
probook 450 g5 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
probook 450 g6 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
probook 450 g7 firmwareNVD
Affected:< 01.12.00Fixed in:01.12.00CVE-2021-39300derived from NVD
probook 450 g8 firmwareNVD
Affected:< 01.08.02Fixed in:01.08.02CVE-2021-39300derived from NVD
probook 470 g5 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
probook 630 g8 firmwareNVD
Affected:< 01.08.01Fixed in:01.08.01CVE-2021-39300derived from NVD
probook 640 g4 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
probook 640 g5 firmwareNVD
Affected:< 01.12.00Fixed in:01.12.00CVE-2021-39300derived from NVD
probook 640 g7 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
probook 640 g8 firmwareNVD
Affected:< 01.08.01Fixed in:01.08.01CVE-2021-39300derived from NVD
probook 650 g4 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
probook 650 g5 firmwareNVD
Affected:< 01.12.00Fixed in:01.12.00CVE-2021-39300derived from NVD
probook 650 g7 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
probook 650 g8 firmwareNVD
Affected:< 01.08.01Fixed in:01.08.01CVE-2021-39300derived from NVD
probook x360 11 g3 education edition firmwareNVD
Affected:< 01.18.00Fixed in:01.18.00CVE-2021-39300derived from NVD
probook x360 11 g4 education edition firmwareNVD
Affected:< 01.13.00Fixed in:01.13.00CVE-2021-39300derived from NVD
probook x360 11 g5 education edition firmwareNVD
Affected:< 01.09.00Fixed in:01.09.00CVE-2021-39300derived from NVD
probook x360 11 g6 education edition firmwareNVD
Affected:< 01.09.00Fixed in:01.09.00CVE-2021-39300derived from NVD
probook x360 11 g7 education edition firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
probook x360 440 g1 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
z1 entry tower g5 workstation firmwareNVD
Affected:< 02.12.00Fixed in:02.12.00CVE-2021-39300derived from NVD
z1 entry tower g6 workstation firmwareNVD
Affected:< 02.10.00Fixed in:02.10.00CVE-2021-39300derived from NVD
z1 g8 tower desktop pc firmwareNVD
Affected:< 02.07.00Fixed in:02.07.00CVE-2021-39300derived from NVD
z4 g4 workstation \(core-x\) firmwareNVD
Affected:< 02.75Fixed in:02.75CVE-2021-39300derived from NVD
z4 g4 workstation \(xeon w\) firmwareNVD
Affected:< 02.75Fixed in:02.75CVE-2021-39300derived from NVD
z6 g4 workstation firmwareNVD
Affected:< 02.75Fixed in:02.75CVE-2021-39300derived from NVD
z8 g4 workstation firmwareNVD
Affected:< 02.75Fixed in:02.75CVE-2021-39300derived from NVD
zbook 14u g5 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
zbook 14u g6 firmwareNVD
Affected:< 01.12.00Fixed in:01.12.00CVE-2021-39300derived from NVD
zbook 15 g5 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
zbook 15 g6 firmwareNVD
Affected:< 01.12.00Fixed in:01.12.00CVE-2021-39300derived from NVD
zbook 15u g5 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
zbook 15u g6 firmwareNVD
Affected:< 01.12.00Fixed in:01.12.00CVE-2021-39300derived from NVD
zbook 17 g5 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
zbook 17 g6 firmwareNVD
Affected:< 01.12.00Fixed in:01.12.00CVE-2021-39300derived from NVD
zbook create g7 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
zbook firefly 14 g7 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
zbook firefly 14 g8 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
zbook firefly 15 g7 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
zbook firefly 15 g8 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
zbook fury 15 g7 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
zbook fury 15 g8 firmwareNVD
Affected:< 01.08.01Fixed in:01.08.01CVE-2021-39300derived from NVD
zbook fury 17 g7 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
zbook fury 17 g8 firmwareNVD
Affected:< 01.08.01Fixed in:01.08.01CVE-2021-39300derived from NVD
zbook power 15 g8 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
zbook power g7 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
zbook studio 15 g8 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
zbook studio g5 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
zbook studio g7 firmwareNVD
Affected:< 01.08.00Fixed in:01.08.00CVE-2021-39300derived from NVD
zbook studio x360 g5 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
zhan 66 pro 13 g2 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
zhan 66 pro 14 g2 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
zhan 66 pro 14 g3 firmwareNVD
Affected:< 01.12.00Fixed in:01.12.00CVE-2021-39300derived from NVD
zhan 66 pro 14 g4 firmwareNVD
Affected:< 01.08.02Fixed in:01.08.02CVE-2021-39300derived from NVD
zhan 66 pro 15 g2 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
zhan 66 pro 15 g3 firmwareNVD
Affected:< 01.12.00Fixed in:01.12.00CVE-2021-39300derived from NVD
zhan 66 pro g1 firmwareNVD
Affected:< 01.19.00Fixed in:01.19.00CVE-2021-39300derived from NVD
zhan x 13 g2 firmwareNVD
Affected:< 01.12.00Fixed in:01.12.00CVE-2021-39300derived from NVD

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorLocal
Attack ComplexityLow
Privileges RequiredLow
User InteractionNone
ScopeChanged

Impact

ConfidentialityHigh
IntegrityHigh
AvailabilityHigh

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Exploit Intelligence

0.41%probability of exploitation in 30 days
33rdpercentile

Low risk: more likely to be exploited than 33% of all known CVEs.

References

Embed a live status badge for CVE-2021-39300
CVE-2021-39300 severity badge

Markdown

[![CVE-2021-39300](https://tridentstack.com/cve/badge/CVE-2021-39300.svg)](https://tridentstack.com/cve/CVE-2021-39300)

HTML

<a href="https://tridentstack.com/cve/CVE-2021-39300"><img src="https://tridentstack.com/cve/badge/CVE-2021-39300.svg" alt="CVE-2021-39300"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2024-11-21.