QwikSec

Security Database

CVE

CWE

Training

CVE-2019-16287

Published: Nov 22, 2019

Modified: Aug 5, 2024

PUBLISHED

Description

In HP ThinPro Linux 6.2, 6.2.1, 7.0 and 7.1, an attacker may be able to leverage the application filter bypass vulnerability to gain privileged access to create a file on the local file system whose presence puts the device in Administrative Mode, which will allow the attacker to executed commands with elevated privileges.

Vendor	Product	Versions
HP	ThinPro Linux	affected `6.2` affected `6.2.1` affected `7.0` affected `7.1`

References

https://support.hp.com/us-en/document/c06509350

x_refsource_CONFIRM

20200324 HP ThinPro - Privilege escalation

mailing-list

x_refsource_FULLDISC

http://packetstormsecurity.com/files/156899/HP-ThinPro-6.x-7.x-Privilege-Escalation.html

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.