← Back
2025-10-28 20:40CVE-2025-43017hp
PUBLISHED5.2CWE-250

HP ThinPro 8.1 SP8 Security Updates

HP ThinPro 8.1 System management application failed to verify user's true id. HP has released HP ThinPro 8.1 SP8, which includes updates to mitigate potential vulnerabilities.

Problem type

Affected products

HP Inc.

HP ThinPro 8.1

< <SP8 - AFFECTED

References

support.hp.com

https://support.hp.com/us-en/document/ish_13164593-13164617-16/hpsbhf04066

GitHub Security Advisories

GHSA-2mmx-jx99-8cmf

HP ThinPro 8.1 System management application failed to verify user's true id. HP has released HP...

https://github.com/advisories/GHSA-2mmx-jx99-8cmf

HP ThinPro 8.1 System management application failed to verify user's true id. HP has released HP ThinPro 8.1 SP8, which includes updates to mitigate potential vulnerabilities.

nvd.nist.gov

https://nvd.nist.gov/vuln/detail/CVE-2025-43017

support.hp.com

https://support.hp.com/us-en/document/ish_13164593-13164617-16/hpsbhf04066

github.com

https://github.com/advisories/GHSA-2mmx-jx99-8cmf

JSON source

Click to expand
{
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "cveMetadata": {
    "cveId": "CVE-2025-43017",
    "assignerOrgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
    "assignerShortName": "hp",
    "dateUpdated": "2025-10-30T03:56:02.832Z",
    "dateReserved": "2025-04-16T13:49:21.688Z",
    "datePublished": "2025-10-28T20:40:19.040Z",
    "state": "PUBLISHED"
  },
  "containers": {
    "cna": {
      "providerMetadata": {
        "orgId": "74586083-13ce-40fd-b46a-8e5d23cfbcb2",
        "shortName": "hp",
        "dateUpdated": "2025-10-28T20:40:19.040Z"
      },
      "title": "HP ThinPro 8.1 SP8 Security Updates",
      "descriptions": [
        {
          "lang": "en",
          "value": "HP ThinPro 8.1 System management application failed to verify user's true id. HP has released HP ThinPro 8.1 SP8, which includes updates to mitigate potential vulnerabilities.",
          "supportingMedia": [
            {
              "type": "text/html",
              "base64": false,
              "value": "HP ThinPro 8.1 System management application failed to verify user's true id. HP has released HP ThinPro 8.1 SP8, which includes updates to mitigate potential vulnerabilities."
            }
          ]
        }
      ],
      "affected": [
        {
          "vendor": "HP Inc.",
          "product": "HP ThinPro 8.1",
          "defaultStatus": "unknown",
          "versions": [
            {
              "version": "SP1",
              "status": "affected",
              "versionType": "custom",
              "lessThan": "<SP8"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "lang": "en",
              "description": "CWE-250: Execution with Unnecessary Privileges",
              "cweId": "CWE-250",
              "type": "CWE"
            }
          ]
        }
      ],
      "references": [
        {
          "url": "https://support.hp.com/us-en/document/ish_13164593-13164617-16/hpsbhf04066"
        }
      ],
      "metrics": [
        {
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ]
    },
    "adp": [
      {
        "providerMetadata": {
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP",
          "dateUpdated": "2025-10-30T03:56:02.832Z"
        },
        "title": "CISA ADP Vulnrichment",
        "metrics": [
          {}
        ]
      }
    ]
  }
}

Mitre source

https://cveawg.mitre.org/api/cve/CVE-2025-43017