User Identity Verification Issue in HP ThinPro 8.1 System Management Application
CVE-2025-43017

8.5HIGH

Key Information:

Vendor: HP
Status: HP Thinpro 8.1
Vendor: CVE Published:; 28 October 2025

What is CVE-2025-43017?

The HP ThinPro 8.1 System Management Application contains a vulnerability that arises from inadequate verification of the user's true identity, potentially allowing unauthorized access. HP has addressed this issue in the latest release, HP ThinPro 8.1 SP8, which includes essential updates aimed at mitigating these security risks. Users are encouraged to upgrade their systems to enhance protection and maintain the integrity of their data.

Affected Version(s)

HP ThinPro 8.1 SP1

References

https://support.hp.com/us-en/document/ish_13164593-131646...

CVSS V4

Score:

8.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 28, 2025
Vulnerability Reserved
Apr 16, 2025

JSON