PT-2019-9492 · Unknown · Evisitorpass

Publicado

2019-03-19

Atualizado

2019-10-09

CVE-2018-17493

CVSS v3.1

8.4

Alta

Vetor

AC:L/C:H/I:H/AV:L/A:H/PR:N/UI:N/S:U

Name of the Vulnerable Software and Affected Versions eVisitorPass (affected versions not specified)

Description The issue allows a local attacker to gain elevated privileges on the system due to an error with the Fullscreen button. By visiting the kiosk and clicking the full screen button in the bottom right, an attacker could exploit this to close the program and launch other processes on the system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2018-17493

Produtos afetados

Evisitorpass

PT-2019-9492 · Unknown · Evisitorpass

CVE-2018-17493

Identificadores relacionados

Produtos afetados

Referências · 3