Lucene search

IbmCVELIST:CVE-2018-17482

HistoryMar 19, 2019 - 7:47 p.m.

CVE-2018-17482

2019-03-1919:47:40

ibm

www.cve.org

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:U/RC:R

AI Score

5.5

Confidence

High

EPSS

Percentile

5.1%

JSON

Lobby Track Desktop could allow a local attacker to obtain sensitive information, caused by an error in Reports while in kiosk mode. By visiting the kiosk and clicking on reports, an attacker could exploit this vulnerability to gain access to all visitor records and obtain sensitive information.

CNA Affected

[
  {
    "product": "Lobby Track Desktop",
    "vendor": "Jolly Technologies",
    "versions": [
      {
        "status": "affected",
        "version": "8.2.186"
      }
    ]
  }
]

References

exchange.xforce.ibmcloud.com/vulnerabilities/149642

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:U/RC:R

AI Score

5.5

Confidence

High

EPSS

Percentile

5.1%

JSON

Related for CVELIST:CVE-2018-17482