HP Thinpro
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in HP Thinpro.
By the Year
In 2026 there have been 0 vulnerabilities in HP Thinpro. Last year, in 2025 Thinpro had 1 security vulnerability published. Right now, Thinpro is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 1 | 0.00 |
| 2024 | 1 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 1 | 5.50 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 3 | 6.80 |
It may take a day or so for new Thinpro vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent HP Thinpro Security Vulnerabilities
HP ThinPro 8.1 SP8 System Management App ID Verification Vulnerability
CVE-2025-43017
- October 28, 2025
HP ThinPro 8.1 System management application failed to verify user's true id. HP has released HP ThinPro 8.1 SP8, which includes updates to mitigate potential vulnerabilities.
Execution with Unnecessary Privileges
HP ThinPro OS 8.0 SP 8 mitigates prior version vulnerabilities
CVE-2024-1174
- March 01, 2024
Previous versions of HP ThinPro (prior to HP ThinPro 8.0 SP 8) could potentially contain security vulnerabilities. HP has released HP ThinPro 8.0 SP 8, which includes updates to mitigate potential vulnerabilities.
HP ThinPro 7.2 SP8 Vulnerability Persisting Through SP9 Fix; SP10 Remediation
CVE-2022-1602
5.5 - Medium
- September 13, 2022
A potential security vulnerability has been identified in HP ThinPro 7.2 Service Pack 8 (SP8). The security vulnerability in SP8 is not remedied after upgrading from SP8 to Service Pack 9 (SP9). HP has released Service Pack 10 (SP10) to remediate the potential vulnerability introduced in SP8.
In HP ThinPro Linux 6.2, 6.2.1, 7.0 and 7.1, an attacker may be able to leverage the application filter bypass vulnerability to gain privileged access to create a file on the local file system whose presence puts the device in Administrative Mode, which will
CVE-2019-16287
6.8 - Medium
- November 22, 2019
In HP ThinPro Linux 6.2, 6.2.1, 7.0 and 7.1, an attacker may be able to leverage the application filter bypass vulnerability to gain privileged access to create a file on the local file system whose presence puts the device in Administrative Mode, which will allow the attacker to executed commands with elevated privileges.
The VPN software within HP ThinPro does not safely handle user supplied input, which may be leveraged by an attacker to inject commands
CVE-2019-18909
- November 22, 2019
The VPN software within HP ThinPro does not safely handle user supplied input, which may be leveraged by an attacker to inject commands that will execute with root privileges.
The Citrix Receiver wrapper function does not safely handle user supplied input, which may be leveraged by an attacker to inject commands
CVE-2019-18910
- November 22, 2019
The Citrix Receiver wrapper function does not safely handle user supplied input, which may be leveraged by an attacker to inject commands that will execute with local user privileges.
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for HP Thinpro or by HP? Click the Watch button to subscribe.
