Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

19 matches found

EUVD
EUVDadded yesterday7 views

EUVD-2019-20154

Dräger Infinity Explorer C700 contains a privilege escalation vulnerability that allows attackers to break out of kiosk mode and access the underlying operating system through a specific dialog interaction. Attackers can exploit this kiosk escape to take control of the operating system and cause...

8.6CVSS5.8AI score0.00013EPSS
Exploits0References2
Cvelist
Cvelistadded 2 days ago21 views

CVE-2019-25718 Dräger Infinity Explorer C700 Privilege Escalation via Kiosk Mode Bypass

Dräger Infinity Explorer C700 contains a privilege escalation vulnerability that allows attackers to break out of kiosk mode and access the underlying operating system through a specific dialog interaction. Attackers can exploit this kiosk escape to take control of the operating system and cause...

8.6CVSS0.00013EPSS
Exploits0References2
CVE
CVEadded 2 days ago7 views

CVE-2019-25718

Affected product: Dräger Infinity Explorer C700. Vulnerability: privilege escalation allowing kiosk-mode escape to reach the underlying OS via a specific dialog interaction. Impact: attacker can break out of kiosk mode, gain OS control, and cause the Delta Family patient monitor display to show i...

8.6CVSS5.8AI score0.00013EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2 days ago5 views

PT-2026-45627

Dräger Infinity Explorer C700 contains a privilege escalation vulnerability that allows attackers to break out of kiosk mode and access the underlying operating system through a specific dialog interaction. Attackers can exploit this kiosk escape to take control of the operating system and cause...

8.6CVSS5.8AI score0.00013EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/23 2:18 a.m.6 views

CVE-2023-51772

One Identity Password Manager before 5.13.1 allows Kiosk Escape. This product enables users to reset their Active Directory passwords on the login screen of a Windows client. It launches a Chromium based browser in Kiosk mode to provide the reset functionality. The escape sequence is: wait for a...

8.8CVSS6.8AI score0.00069EPSS
Exploits0References1
NVD
NVDadded 2023/12/25 6:15 a.m.12 views

CVE-2023-48654

One Identity Password Manager before 5.13.1 allows Kiosk Escape. This product enables users to reset their Active Directory passwords on the login screen of a Windows client. It launches a Chromium based browser in Kiosk mode to provide the reset functionality. The escape sequence is: go to the...

9.8CVSS0.00365EPSS
Exploits1References3
NVD
NVDadded 2023/12/25 6:15 a.m.7 views

CVE-2023-51772

One Identity Password Manager before 5.13.1 allows Kiosk Escape. This product enables users to reset their Active Directory passwords on the login screen of a Windows client. It launches a Chromium based browser in Kiosk mode to provide the reset functionality. The escape sequence is: wait for a...

8.8CVSS0.00069EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2023/12/25 6:15 a.m.0 views

CVE-2023-51772

One Identity Password Manager before 5.13.1 allows Kiosk Escape. This product enables users to reset their Active Directory passwords on the login screen of a Windows client. It launches a Chromium based browser in Kiosk mode to provide the reset functionality. The escape sequence is: wait for a...

8.8CVSS5.8AI score0.00069EPSS
Exploits0References3
OSV
OSVadded 2023/12/25 6:15 a.m.3 views

CVE-2023-51772

One Identity Password Manager before 5.13.1 allows Kiosk Escape. This product enables users to reset their Active Directory passwords on the login screen of a Windows client. It launches a Chromium based browser in Kiosk mode to provide the reset functionality. The escape sequence is: wait for a...

8.8CVSS5.8AI score
Exploits0References2
OSV
OSVadded 2023/12/25 6:15 a.m.2 views

CVE-2023-48654

One Identity Password Manager before 5.13.1 allows Kiosk Escape. This product enables users to reset their Active Directory passwords on the login screen of a Windows client. It launches a Chromium based browser in Kiosk mode to provide the reset functionality. The escape sequence is: go to the...

9.8CVSS5.8AI score0.00365EPSS
Exploits1References3
Prion
Prionadded 2023/12/25 6:15 a.m.12 views

Default credentials

One Identity Password Manager before 5.13.1 allows Kiosk Escape. This product enables users to reset their Active Directory passwords on the login screen of a Windows client. It launches a Chromium based browser in Kiosk mode to provide the reset functionality. The escape sequence is: go to the...

7.5CVSS7AI score0.00365EPSS
Exploits1References2Affected Software1
Prion
Prionadded 2023/12/25 6:15 a.m.13 views

Design/Logic Flaw

One Identity Password Manager before 5.13.1 allows Kiosk Escape. This product enables users to reset their Active Directory passwords on the login screen of a Windows client. It launches a Chromium based browser in Kiosk mode to provide the reset functionality. The escape sequence is: wait for a...

6.5CVSS7.1AI score0.00069EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2023/12/25 12:0 a.m.48 views

CVE-2023-48654

One Identity Password Manager before 5.13.1 is affected by a Kiosk Escape privilege escalation. The vulnerability allows an attacker to break out of the kiosk-embedded Chromium browser on the Windows login screen and launch cmd.exe as NT AUTHORITY\SYSTEM, enabling high-privilege access. The escap...

9.8CVSS9.2AI score0.00365EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2023/12/25 12:0 a.m.13 views

CVE-2023-51772

One Identity Password Manager before 5.13.1 allows Kiosk Escape. This product enables users to reset their Active Directory passwords on the login screen of a Windows client. It launches a Chromium based browser in Kiosk mode to provide the reset functionality. The escape sequence is: wait for a...

8.8AI score0.00069EPSS
Exploits0References2
Cvelist
Cvelistadded 2023/12/25 12:0 a.m.10 views

CVE-2023-48654

One Identity Password Manager before 5.13.1 allows Kiosk Escape. This product enables users to reset their Active Directory passwords on the login screen of a Windows client. It launches a Chromium based browser in Kiosk mode to provide the reset functionality. The escape sequence is: go to the...

9.5AI score0.00365EPSS
Exploits1References2
CVE
CVEadded 2023/12/25 12:0 a.m.38 views

CVE-2023-51772

CVE-2023-51772 affects One Identity Password Manager before 5.13.1. The vulnerability arises from the login screen’s Kiosk mode workflow, which launches a Chromium-based browser to reset Active Directory passwords. The root cause enables an attacker to escape the kiosk sandbox by navigating throu...

8.8CVSS8.5AI score0.00069EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologiesadded 2023/12/24 12:0 a.m.2 views

PT-2023-31890 · One Identity +2 · One Identity Password Manager +2

Name of the Vulnerable Software and Affected Versions: One Identity Password Manager versions prior to 5.13.1 Description: The issue allows Kiosk Escape, affecting the product's functionality to reset Active Directory passwords on the login screen of a Windows client. It launches a Chromium-based...

8.8CVSS7.3AI score0.00069EPSS
Exploits0References5
Packet Storm
Packet Stormadded 2023/12/13 12:0 a.m.390 views

One Identity Password Manager Kiosk Escape Privilege Escalation

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Kiosk Escape Privilege Escalation product: One Identity Password Manager Secure Password Extension vulnerable version: 5.13.1 fixed version: 5.13.1 CVE number:...

7.4AI score0.00365EPSS
Exploits1
Positive Technologies
Positive Technologiesadded 2023/12/07 12:0 a.m.2 views

PT-2023-30875 · One Identity +2 · One Identity Password Manager +2

Name of the Vulnerable Software and Affected Versions: One Identity Password Manager versions prior to 5.13.1 Description: The issue allows Kiosk Escape in One Identity Password Manager, which enables users to reset their Active Directory passwords on the login screen of a Windows client. It...

9.8CVSS9.4AI score0.00365EPSS
Exploits1References7
Rows per page
Query Builder