Skip to main content

Thinpro

5 CVEs product

Monthly

CVE-2022-1602 MEDIUM This Month

A potential security vulnerability has been identified in HP ThinPro 7.2 Service Pack 8 (SP8). Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

HP Information Disclosure Thinpro
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2019-18910 MEDIUM POC This Month

The Citrix Receiver wrapper function does not safely handle user supplied input, which may be leveraged by an attacker to inject commands that will execute with local user privileges. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Citrix Command Injection Thinpro
NVD
CVSS 3.1
6.8
EPSS
0.7%
CVE-2019-18909 HIGH POC This Week

The VPN software within HP ThinPro does not safely handle user supplied input, which may be leveraged by an attacker to inject commands that will execute with root privileges. Rated high severity (CVSS 8.0), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

HP Command Injection Thinpro
NVD
CVSS 3.1
8.0
EPSS
2.2%
CVE-2019-16287 MEDIUM This Month

In HP ThinPro Linux 6.2, 6.2.1, 7.0 and 7.1, an attacker may be able to leverage the application filter bypass vulnerability to gain privileged access to create a file on the local file system whose. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass HP Thinpro
NVD
CVSS 3.1
6.8
EPSS
0.7%
CVE-2016-2246 HIGH PATCH This Week

HP ThinPro 4.4 through 6.1 mishandles the keyboard layout control panel and virtual keyboard application, which allows local users to bypass intended access restrictions and gain privileges via. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

HP Privilege Escalation Thinpro
NVD
CVSS 3.0
7.8
EPSS
0.1%
EPSS 0% CVSS 5.5
MEDIUM This Month

A potential security vulnerability has been identified in HP ThinPro 7.2 Service Pack 8 (SP8). Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

HP Information Disclosure Thinpro
NVD
EPSS 1% CVSS 6.8
MEDIUM POC This Month

The Citrix Receiver wrapper function does not safely handle user supplied input, which may be leveraged by an attacker to inject commands that will execute with local user privileges. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Citrix Command Injection Thinpro
NVD
EPSS 2% CVSS 8.0
HIGH POC This Week

The VPN software within HP ThinPro does not safely handle user supplied input, which may be leveraged by an attacker to inject commands that will execute with root privileges. Rated high severity (CVSS 8.0), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

HP Command Injection Thinpro
NVD
EPSS 1% CVSS 6.8
MEDIUM This Month

In HP ThinPro Linux 6.2, 6.2.1, 7.0 and 7.1, an attacker may be able to leverage the application filter bypass vulnerability to gain privileged access to create a file on the local file system whose. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass HP Thinpro
NVD
EPSS 0% CVSS 7.8
HIGH PATCH This Week

HP ThinPro 4.4 through 6.1 mishandles the keyboard layout control panel and virtual keyboard application, which allows local users to bypass intended access restrictions and gain privileges via. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

HP Privilege Escalation Thinpro
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy