CVE-2019-16286

EUVD-2019-7084
An attacker may be able to bypass the OS application filter meant to restrict applications that can be executed by changing browser preferences to launch a separate process that in turn can execute arbitrary commands.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.8 MEDIUM
PHYSICAL
LOW
NONE
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 47%
Affected Products (NVD)
VendorProductVersion
hpthinpro_linux
6.2
hpthinpro_linux
6.2.1
hpthinpro_linux
7.0
hpthinpro_linux
7.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://packetstormsecurity.com/files/156898/HP-ThinPro-6.x-7.x-Filter-Bypass.html
http://seclists.org/fulldisclosure/2020/Mar/37
https://support.hp.com/us-en/document/c06509350
http://packetstormsecurity.com/files/156898/HP-ThinPro-6.x-7.x-Filter-Bypass.html
http://seclists.org/fulldisclosure/2020/Mar/37
https://support.hp.com/us-en/document/c06509350