Microsoft · Internet Explorer · CVE-2018-12989
**Name of the Vulnerable Software and Affected Versions**
Pearson VUE Certiport Console versions prior to 2018-06-26
IQSystem versions prior to 2018-06-26
**Description**
The issue concerns the report-viewing feature mishandling child processes, leading to the launch of Internet Explorer or Microsoft Edge as Administrator. This allows local users to gain privileges.
**Recommendations**
For Pearson VUE Certiport Console versions prior to 2018-06-26, update to a version released after 2018-06-26 to resolve the issue.
For IQSystem versions prior to 2018-06-26, update to a version released after 2018-06-26 to resolve the issue.