13 matches found
CVE-2023-4499
A potential security vulnerability has been identified in the HP ThinUpdate utility also known as HP Recovery Image and Software Download Tool which may lead to information disclosure. HP is releasing mitigation for the potential vulnerability...
EUVD-2023-54354
Malicious code in bioql PyPI...
HP ThinUpdate vulnerable to improper server certificate verification
Overview HP ThinUpdate provided by HP Development Company, L.P. is vulnerable to improper server certificate verification CWE-295. Narumi Hirai of LAC Co., Ltd. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impac...
JVN#02058996: HP ThinUpdate vulnerable to improper server certificate verification
HP ThinUpdate provided by HP Development Company, L.P. is vulnerable to improper server certificate verification CWE-295. Impact A man-in-the-middle attack may allow an attacker to eavesdrop on an encrypted communication or alter the communication. Solution Update the Software Update the software...
CVE-2023-4499
A potential security vulnerability has been identified in the HP ThinUpdate utility also known as HP Recovery Image and Software Download Tool which may lead to information disclosure. HP is releasing mitigation for the potential vulnerability...
CVE-2023-4499
A potential security vulnerability has been identified in the HP ThinUpdate utility also known as HP Recovery Image and Software Download Tool which may lead to information disclosure. HP is releasing mitigation for the potential vulnerability...
Information disclosure
A potential security vulnerability has been identified in the HP ThinUpdate utility also known as HP Recovery Image and Software Download Tool which may lead to information disclosure. HP is releasing mitigation for the potential vulnerability...
CVE-2023-4499
A potential security vulnerability has been identified in the HP ThinUpdate utility also known as HP Recovery Image and Software Download Tool which may lead to information disclosure. HP is releasing mitigation for the potential vulnerability...
CVE-2023-4499
A potential security vulnerability has been identified in the HP ThinUpdate utility also known as HP Recovery Image and Software Download Tool which may lead to information disclosure. HP is releasing mitigation for the potential vulnerability...
CVE-2023-4499
CVE-2023-4499 affects HP ThinUpdate (Recovery Image/Software Download Tool). The connected sources confirm an improper server certificate verification (CWE-295) in HP ThinUpdate, enabling potential information disclosure via MITM; affected versions prior to 2.7.15. HP has mitigations and instruct...
PT-2023-6314 · Hewlett Packard · Hp Thinupdate Utility
Name of the Vulnerable Software and Affected Versions: HP ThinUpdate utility also known as HP Recovery Image and Software Download Tool affected versions not specified Description: A potential security issue has been identified in the HP ThinUpdate utility, which may lead to information disclosur...
HP ThinUpdate Trust Management Issue Vulnerability
HP ThinUpdate is an application from Hewlett-Packard HP USA. It allows you to download system images and software add-ons from HP, capture HP Thin Client images, create ISO files, and more! A security vulnerability exists in the HP ThinUpdate utility HP Recovery Image and Software Download Tool,...
HP ThinUpdate - Improper Certificate Validation
A potential security vulnerability has been identified in the HP ThinUpdate utility also known as HP Recovery Image and Software Download Tool which may lead to information disclosure. HP is releasing mitigation for the potential vulnerability. HP ThinUpdate version 2.7.15 has been updated to...