Every CVE whose affected-product data names Hp Thinpro, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2025-43017 — CVSS 9.8 (critical): HP ThinPro 8.1 System management application failed to verify user's true id. HP has released HP ThinPro 8.1 SP8, which includes updates to…
CVE-2019-18909 — CVSS 8.0 (high): The VPN software within HP ThinPro does not safely handle user supplied input, which may be leveraged by an attacker to inject commands…
CVE-2017-2740 — CVSS 7.8 (high): A potential security vulnerability has been identified with the command line shell of the HP ThinPro operating system 6.1, 5.2.1, 5.2, 5.1…
CVE-2016-2246 — CVSS 7.8 (high): HP ThinPro 4.4 through 6.1 mishandles the keyboard layout control panel and virtual keyboard application, which allows local users to…
CVE-2025-43024 — CVSS 7.5 (high): A GUI dialog of an application allows to view what files are in the file system without proper authorization.
CVE-2019-18910 — CVSS 6.8 (medium): The Citrix Receiver wrapper function does not safely handle user supplied input, which may be leveraged by an attacker to inject commands…
CVE-2019-16287 — CVSS 6.8 (medium): In HP ThinPro Linux 6.2, 6.2.1, 7.0 and 7.1, an attacker may be able to leverage the application filter bypass vulnerability to gain…
CVE-2022-1602 — CVSS 5.5 (medium): A potential security vulnerability has been identified in HP ThinPro 7.2 Service Pack 8 (SP8). The security vulnerability in SP8 is not…