eVisitorPass could allow a local attacker to gain elevated privileges on the system, caused by an error with the Virtual Keyboard Help Dialog. By visiting the kiosk and removing the program from fullscreen, an attacker could exploit this vulnerability using the terminal to launch the command prompt.
References
Link | Resource |
---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/149655 | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: ibm
Published: 2019-03-04T00:00:00
Updated: 2019-03-19T19:47:41
Reserved: 2018-09-25T00:00:00
Link: CVE-2018-17495
JSON object: View
NVD Information
Status : Modified
Published: 2019-03-21T16:00:25.640
Modified: 2019-10-09T23:36:41.113
Link: CVE-2018-17495
JSON object: View
Redhat Information
No data.
CWE