7 matches found
CVE-2018-17484
CVE-2018-17484 affects Lobby Track Desktop, where an error in the Sample Database.mdb database while in kiosk mode could allow a local attacker to view and edit the database by using kiosk-breakout vectors. The vulnerability results in information disclosure (sensitive data) from the database; th...
CVE-2018-17482
CVE-2018-17482 affects Lobby Track Desktop (visitor management app by Jolly Technologies). A vulnerability in the kiosk-mode Reports component allows a local attacker to disclose sensitive information by visiting the kiosk and interacting with Reports, potentially gaining access to all visitor re...
CVE-2018-17483
CVE-2018-17483 affects Lobby Track Desktop in kiosk mode, where an error in Reports enables a local attacker viewing the driver’s license column to obtain driver’s license numbers and other personal information. The NVD entry confirms an information disclosure vulnerability with local access; the...
CVE-2018-17487
CVE-2018-17487 affects Lobby Track Desktop; local attacker could gain elevated privileges due to an error in the printer dialog. By visiting the kiosk and signing in as a visitor, an attacker could use the command line to break out of kiosk mode. Documents describe local privilege escalation and ...
CVE-2018-17485
CVE-2018-17485 affects Lobby Track Desktop. The vulnerability arises from default administrative credentials, enabling a local attacker to gain full access to the application. The linked sources confirm the issue exists and that mitigations/patches have been released by vendors in some reports; p...
CVE-2018-17486
CVE-2018-17486 affects Lobby Track Desktop (Jolly Technologies). In kiosk mode, an error in the find visitor function could let a local attacker bypass security restrictions and, by visiting the kiosk and using the find visitor option, delete visitor records or remove a host. The available connec...
CVE-2018-17488
CVE-2018-17488 affects Lobby Track Desktop. A local attacker could gain elevated privileges due to an error in the printer dialog that enables breaking out of kiosk mode when visiting the kiosk and accessing the print badge screen; exploitation would occur via the command line. The primary source...