eVisitorPass could allow a local attacker to gain elevated privileges on the system, caused by an error with the Fullscreen button. By visiting the kiosk and clicking the full screen button in the bottom right, an attacker could exploit this vulnerability to close the program and launch other processes on the system.
References
Link | Resource |
---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/149653 | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: ibm
Published: 2019-03-04T00:00:00
Updated: 2019-03-19T19:47:41
Reserved: 2018-09-25T00:00:00
Link: CVE-2018-17493
JSON object: View
NVD Information
Status : Modified
Published: 2019-03-21T16:00:25.517
Modified: 2019-10-09T23:36:40.830
Link: CVE-2018-17493
JSON object: View
Redhat Information
No data.
CWE