Privilege Escalation in HP ThinPro Linux and Smart Zero Core Products
CVE-2015-2124

Currently unrated

Key Information:

Vendor: HP
Status: Thinpro Linux; Smart Zero Core
Vendor: CVE Published:; 5 June 2015

Summary

A vulnerability exists in the Easy Setup Wizard of HP ThinPro Linux versions 4.1 to 5.1 and Smart Zero Core versions 4.3 and 4.4. This flaw enables local users to exploit unspecified vectors to bypass security restrictions, potentially leading to unauthorized privilege escalation. Organizations utilizing these products are advised to implement available patches and updates to enhance their security posture and mitigate risks associated with this vulnerability.

References

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/doc...

vendor-advisoryx_refsource_HP

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/doc...

vendor-advisoryx_refsource_HP

http://www.securityfocus.com/bid/74897

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Jun 5, 2015
Vulnerability Reserved
Feb 27, 2015