CVE-2023-52952

Name of the Vulnerable Software and Affected Versions HiMed Cockpit 12 pro versions 11.5.1 through 11.6.2 HiMed Cockpit 14 pro+ versions 11.5.1 through 11.6.2 HiMed Cockpit 18 pro versions 11.5.1 through 11.6.2 HiMed Cockpit 18 pro+ versions 11.5.1 through 11.6.2

Description A restricted desktop environment escape vulnerability has been identified in the Kiosk Mode of the affected devices. This could allow an unauthenticated local attacker to escape the restricted environment and gain access to the underlying operating system.

Recommendations For HiMed Cockpit 12 pro versions 11.5.1 through 11.6.2, update to a version outside of this range to mitigate the risk. For HiMed Cockpit 14 pro+ versions 11.5.1 through 11.6.2, update to a version outside of this range to mitigate the risk. For HiMed Cockpit 18 pro versions 11.5.1 through 11.6.2, update to a version outside of this range to mitigate the risk. For HiMed Cockpit 18 pro+ versions 11.5.1 through 11.6.2, update to a version outside of this range to mitigate the risk. As a temporary workaround, consider restricting access to the Kiosk Mode until a patch is available.