Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.8
CVSSv3

CVE-2019-16286

Published: 22/11/2019 Updated: 24/08/2020
CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9
CVSS v3 Base Score: 6.8 | Impact Score: 5.9 | Exploitability Score: 0.9
VMScore: 409
Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Hp

Vulnerability Summary

An attacker may be able to bypass the OS application filter meant to restrict applications that can be executed by changing browser preferences to launch a separate process that in turn can execute arbitrary commands.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

hp thinpro linux 6.2

hp thinpro linux 6.2.1

hp thinpro linux 7.0

hp thinpro linux 7.1

Vendor Advisories

HP: SUPPORT COMMUNICATION- SECURITY BULLETIN HPSBHF03642 rev. 2 - HP ThinPro Linux Information Disclosure and Privilege Escalation
Potential security vulnerabilities have been identified with certain versions of HP ThinPro components that may allow unauthorized information disclosure, privilege escalation, and arbitrary code execution ...
HP: SUPPORT COMMUNICATION- SECURITY BULLETIN HPSBHF03642 rev. 2 - HP ThinPro Linux Information Disclosure and Privilege Escalation
Potential security vulnerabilities have been identified with certain versions of HP ThinPro components that may allow unauthorized information disclosure, privilege escalation, and arbitrary code execution ...

Exploits

Exploit DB: HP ThinPro 6.x / 7.x Filter Bypass
HP ThinPro versions 71, 70, 621, and 62 suffer from an application filter bypass vulnerability ...

Mailing Lists

Full Disclosure: HP ThinPro - Application filter bypass
<!--X-Body-Begin--> <!--X-User-Header--> Full Disclosure mailing list archives <!--X-User-Header-End--> <!--X-TopPNI--> By Date By Thread </form> <!--X-TopPNI-End--> <!--X-MsgBody--> <!--X-Subject-Header-Begin--> HP ThinPro - Application filter bypass <!--X-Subject-Header-End--> <!--X-Head-of-Message--> From: Eldar Marcussen &l ...

References

CWE-287https://support.hp.com/us-en/document/c06509350http://seclists.org/fulldisclosure/2020/Mar/37http://packetstormsecurity.com/files/156898/HP-ThinPro-6.x-7.x-Filter-Bypass.htmlhttps://nvd.nist.govhttps://packetstormsecurity.com/files/156898/HP-ThinPro-6.x-7.x-Filter-Bypass.htmlhttps://support.hp.com//us-en/document/c06509350
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895blind SQL injectionCVE-2024-5064CVE-2023-52677CVE-2023-52682CVE-2024-30051CVE-2024-35849remote attackersremote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook