← back
CVE-2019-16285

CVE-2019-16285

EPSS 1.0%
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 1.0%KEV nãoPoC Patch
Lifecycle
22 Nov 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
If a local user has been configured and logged in, an unauthenticated attacker with physical access may be able to extract sensitive information onto a local drive.
Affected products
HP · ThinPro Linux

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/156895/HP-ThinPro-6.x-7.x-Information-Disclosure.htmlhttp://seclists.org/fulldisclosure/2020/Mar/30https://support.hp.com/us-en/document/c06509350