CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Vulnerability Details : CVE-2015-5367

The HP lt4112 LTE/HSPA+ Gobi 4G module with firmware before 12.500.00.15.1803 on EliteBook, ElitePad, Elite, ProBook, Spectre, ZBook, and mt41 Thin Client devices allows local users to gain privileges via unspecified vectors.
Publish Date : 2015-08-27 Last Update Date : 2017-09-19
Search Twitter   Search YouTube   Search Google

- CVSS Scores & Vulnerability Types

CVSS Score
6.9
Confidentiality Impact Complete (There is total information disclosure, resulting in all system files being revealed.)
Integrity Impact Complete (There is a total compromise of system integrity. There is a complete loss of system protection, resulting in the entire system being compromised.)
Availability Impact Complete (There is a total shutdown of the affected resource. The attacker can render the resource completely unavailable.)
Access Complexity Medium (The access conditions are somewhat specialized. Some preconditions must be satistified to exploit)
Authentication Not required (Authentication is not required to exploit the vulnerability.)
Gained Access None
Vulnerability Type(s) Gain privileges
CWE ID 264

- Products Affected By CVE-2015-5367

# Product Type Vendor Product Version Update Edition Language
1 Hardware HP Elite X2 1010 G2 Version Details Vulnerabilities
2 Hardware HP Elitebook 1040 G1 Version Details Vulnerabilities
3 Hardware HP Elitebook 1040 G2 Version Details Vulnerabilities
4 Hardware HP Elitebook 820 G1 Version Details Vulnerabilities
5 Hardware HP Elitebook 820 G2 Version Details Vulnerabilities
6 Hardware HP Elitebook 825 G2 Version Details Vulnerabilities
7 Hardware HP Elitebook 840 G1 Version Details Vulnerabilities
8 Hardware HP Elitebook 840 G2 Version Details Vulnerabilities
9 Hardware HP Elitebook 845 G1 Version Details Vulnerabilities
10 Hardware HP Elitebook 850 G1 Version Details Vulnerabilities
11 Hardware HP Elitebook 850 G2 Version Details Vulnerabilities
12 Hardware HP Elitebook 855 G1 Version Details Vulnerabilities
13 Hardware HP Elitebook Folio 9470m Version Details Vulnerabilities
14 Hardware HP Elitebook Revolve 810 G1 Version Details Vulnerabilities
15 Hardware HP Elitebook Revolve 810 G2 Version Details Vulnerabilities
16 Hardware HP Elitepad 1000 G2 Version Details Vulnerabilities
17 Application HP Hspa+ Gobi 4g 12.500.00.15.1802 Version Details Vulnerabilities
18 Application HP Lt4112 Lte 12.500.00.15.1802 Version Details Vulnerabilities
19 Hardware HP Mt41 Thin Client Version Details Vulnerabilities
20 Hardware HP Probook 430 G1 Version Details Vulnerabilities
21 Hardware HP Probook 430 G2 Version Details Vulnerabilities
22 Hardware HP Probook 440 G0 Version Details Vulnerabilities
23 Hardware HP Probook 440 G1 Version Details Vulnerabilities
24 Hardware HP Probook 440 G2 Version Details Vulnerabilities
25 Hardware HP Probook 450 G0 Version Details Vulnerabilities
26 Hardware HP Probook 450 G1 Version Details Vulnerabilities
27 Hardware HP Probook 450 G2 Version Details Vulnerabilities
28 Hardware HP Probook 640 G1 Version Details Vulnerabilities
29 Hardware HP Probook 645 G1 Version Details Vulnerabilities
30 Hardware HP Probook 650 G1 Version Details Vulnerabilities
31 Hardware HP Probook 655 G1 Version Details Vulnerabilities
32 Hardware HP Probook X2 620 G1 Version Details Vulnerabilities
33 Hardware HP Spectre X2 13-smb Pro Version Details Vulnerabilities
34 Hardware HP Zbook 14 Version Details Vulnerabilities
35 Hardware HP Zbook 14 G2 Version Details Vulnerabilities
36 Hardware HP Zbook 15 Version Details Vulnerabilities
37 Hardware HP Zbook 15 G2 Version Details Vulnerabilities
38 Hardware HP Zbook 15u Version Details Vulnerabilities
39 Hardware HP Zbook 17 G2 Version Details Vulnerabilities

- Number Of Affected Versions By Product

Vendor Product Vulnerable Versions
HP Elite X2 1010 G2 1
HP Elitebook 1040 G1 1
HP Elitebook 1040 G2 1
HP Elitebook 820 G1 1
HP Elitebook 820 G2 1
HP Elitebook 825 G2 1
HP Elitebook 840 G1 1
HP Elitebook 840 G2 1
HP Elitebook 845 G1 1
HP Elitebook 850 G1 1
HP Elitebook 850 G2 1
HP Elitebook 855 G1 1
HP Elitebook Folio 9470m 1
HP Elitebook Revolve 810 G1 1
HP Elitebook Revolve 810 G2 1
HP Elitepad 1000 G2 1
HP Hspa+ Gobi 4g 1
HP Lt4112 Lte 1
HP Mt41 Thin Client 1
HP Probook 430 G1 1
HP Probook 430 G2 1
HP Probook 440 G0 1
HP Probook 440 G1 1
HP Probook 440 G2 1
HP Probook 450 G0 1
HP Probook 450 G1 1
HP Probook 450 G2 1
HP Probook 640 G1 1
HP Probook 645 G1 1
HP Probook 650 G1 1
HP Probook 655 G1 1
HP Probook X2 620 G1 1
HP Spectre X2 13-smb Pro 1
HP Zbook 14 1
HP Zbook 14 G2 1
HP Zbook 15 1
HP Zbook 15 G2 1
HP Zbook 15u 1
HP Zbook 17 G2 1

- References For CVE-2015-5367

https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773272
HP HPSBHF03408
http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-446601.htm CONFIRM
http://www.securitytracker.com/id/1033414
SECTRACK 1033414
http://www.securityfocus.com/bid/76171
BID 76171
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04773272
HP SSRT101965

- Metasploit Modules Related To CVE-2015-5367

There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information)


CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.