3 matches found
CVE-2019-16286
HP ThinPro Linux exposes CVE-2019-16286 across multiple versions (6.2–7.1). The flaw allows bypass of the OS application filter by altering browser preferences to launch a separate process that can execute arbitrary commands, potentially leading to information disclosure, privilege escalation, an...
CVE-2019-16285
CVE-2019-16285 affects HP ThinPro Linux components (6.2–7.1). When a local user is configured and logged in, an unauthenticated attacker with physical access can disclose sensitive information to a local drive (information disclosure). HP has released updates: HP ThinPro 7.1 Service Pack 4; Secur...
CVE-2015-2124
CVE-2015-2124 is a local privilege-escalation vulnerability in HP ThinPro Linux (4.1–5.1) and HP Smart Zero Core (4.3–4.4) triggered by the HP Easy Setup Wizard. The affected components are the Easy Setup Wizard and the vulnerability enables local users to bypass access restrictions and gain priv...