CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
5.1%
HP ThinPro 4.4 through 6.1 mishandles the keyboard layout control panel and virtual keyboard application, which allows local users to bypass intended access restrictions and gain privileges via unspecified vectors.
Vendor | Product | Version | CPE |
---|---|---|---|
hp | thinpro | 4.4 | cpe:2.3:o:hp:thinpro:4.4:*:*:*:*:*:*:* |
hp | thinpro | 5.0 | cpe:2.3:o:hp:thinpro:5.0:*:*:*:*:*:*:* |
hp | thinpro | 5.1 | cpe:2.3:o:hp:thinpro:5.1:*:*:*:*:*:*:* |
hp | thinpro | 5.2 | cpe:2.3:o:hp:thinpro:5.2:*:*:*:*:*:*:* |
hp | thinpro | 5.2.1 | cpe:2.3:o:hp:thinpro:5.2.1:*:*:*:*:*:*:* |
hp | thinpro | 6.0 | cpe:2.3:o:hp:thinpro:6.0:*:*:*:*:*:*:* |
hp | thinpro | 6.1 | cpe:2.3:o:hp:thinpro:6.1:*:*:*:*:*:*:* |
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
5.1%