CVE-2018-18254
CVE-2018-18254 affects CapMon Access Manager 5.4.1.1005. An unprivileged user can read the CAL (Custom App Launcher) database table cal_whitelist, enabling potential privilege escalation by placing a Trojan horse program at an app pathname. Root cause is access to sensitive CAL data leading to el...