Application Filter Bypass Vulnerability in HP ThinPro Linux
CVE-2019-16287
6.8MEDIUM
Summary
In specific versions of HP ThinPro Linux, an application filter bypass vulnerability allows unauthorized attackers to gain privileged access to the system. By exploiting this flaw, an attacker can create a file on the local file system that triggers Administrative Mode, permitting the execution of commands with elevated privileges. This vulnerability may compromise system security, allowing for unauthorized access and potential malicious activities.
Affected Version(s)
ThinPro Linux 6.2
ThinPro Linux 6.2.1
ThinPro Linux 7.0
References
CVSS V3.1
Score:
6.8
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Physical
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved