PT-2019-9483 · Jolly Technologies · Lobby Track Desktop

Publicado

2019-03-19

Atualizado

2019-10-09

CVE-2018-17484

CVSS v3.1

7.1

Alta

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions Lobby Track Desktop (affected versions not specified)

Description The issue is caused by an error in the Sample Database.mdb database when Lobby Track Desktop is in kiosk mode. This could allow a local attacker to obtain sensitive information. An attacker could exploit this by using attack vectors outlined in kiosk breakout to view and edit the database.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Information Disclosure

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-200

Identificadores relacionados

CVE-2018-17484

Produtos afetados

Lobby Track Desktop

PT-2019-9483 · Jolly Technologies · Lobby Track Desktop

CVE-2018-17484

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3