CVE-2017-2740

A potential security vulnerability has been identified with the command line shell of the HP ThinPro operating system 6.1, 5.2.1, 5.2, 5.1, 5.0, and 4.4. The vulnerability could result in a local unauthorized elevation of privilege on an HP thin client device.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
hpCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 19%
VendorProductVersion
hpthinpro
4.4
hpthinpro
5.0
hpthinpro
5.1
hpthinpro
5.2
hpthinpro
5.2.1
hpthinpro
6.1
𝑥
= Vulnerable software versions
References
https://support.hp.com/us-en/document/c05379294
https://support.hp.com/us-en/document/c05379294