CVE-2025-43017 | THREATINT

Description

HP ThinPro 8.1 System management application failed to verify user's true id. HP has released HP ThinPro 8.1 SP8, which includes updates to mitigate potential vulnerabilities.

PUBLISHED Reserved 2025-04-16 | Published 2025-10-28 | Updated 2025-10-30 | Assigner hp

HIGH: 8.5CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

CWE-250: Execution with Unnecessary Privileges

Product status

Default status

unknown

SP1 (custom) before

affected

References

support.hp.com/...ument/ish_13164593-13164617-16/hpsbhf04066

cve.org (CVE-2025-43017)

nvd.nist.gov (CVE-2025-43017)

Download JSON