PT-2019-9492 · Unknown · Evisitorpass

Published

2019-03-19

Updated

2019-10-09

CVE-2018-17493

CVSS v3.1

8.4

High

Vector

AC:L/C:H/I:H/AV:L/A:H/PR:N/UI:N/S:U

Name of the Vulnerable Software and Affected Versions eVisitorPass (affected versions not specified)

Description The issue allows a local attacker to gain elevated privileges on the system due to an error with the Fullscreen button. By visiting the kiosk and clicking the full screen button in the bottom right, an attacker could exploit this to close the program and launch other processes on the system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2018-17493

Affected Products

Evisitorpass

PT-2019-9492 · Unknown · Evisitorpass

CVE-2018-17493

Related Identifiers

Affected Products

References · 3