← back
CVE-2025-43017

HP ThinPro 8.1 SP8 Security Updates

CVSS 8.5 HIGHEPSS 0.2%CWE-250
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 8.5EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
28 Oct 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
HP ThinPro 8.1 System management application failed to verify user's true id. HP has released HP ThinPro 8.1 SP8, which includes updates to mitigate potential vulnerabilities.
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected products
HP Inc. · HP ThinPro 8.1

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://support.hp.com/us-en/document/ish_13164593-13164617-16/hpsbhf04066