Lucene search
+L
JollytechLobby Track

7 matches found

CVE
CVE
added 2019/03/19 7:47 p.m.56 views

CVE-2018-17484

CVE-2018-17484 affects Lobby Track Desktop, where an error in the Sample Database.mdb database while in kiosk mode could allow a local attacker to view and edit the database by using kiosk-breakout vectors. The vulnerability results in information disclosure (sensitive data) from the database; th...

7.1CVSS6.5AI score0.00309EPSS
CVE
CVE
added 2019/03/19 7:47 p.m.51 views

CVE-2018-17482

CVE-2018-17482 affects Lobby Track Desktop (visitor management app by Jolly Technologies). A vulnerability in the kiosk-mode Reports component allows a local attacker to disclose sensitive information by visiting the kiosk and interacting with Reports, potentially gaining access to all visitor re...

5.5CVSS5.5AI score0.0035EPSS
CVE
CVE
added 2019/03/19 7:47 p.m.43 views

CVE-2018-17483

CVE-2018-17483 affects Lobby Track Desktop in kiosk mode, where an error in Reports enables a local attacker viewing the driver’s license column to obtain driver’s license numbers and other personal information. The NVD entry confirms an information disclosure vulnerability with local access; the...

5.5CVSS5.2AI score0.00303EPSS
CVE
CVE
added 2019/03/19 7:47 p.m.42 views

CVE-2018-17487

CVE-2018-17487 affects Lobby Track Desktop; local attacker could gain elevated privileges due to an error in the printer dialog. By visiting the kiosk and signing in as a visitor, an attacker could use the command line to break out of kiosk mode. Documents describe local privilege escalation and ...

8.4CVSS7.7AI score0.00359EPSS
CVE
CVE
added 2019/03/19 7:47 p.m.40 views

CVE-2018-17485

CVE-2018-17485 affects Lobby Track Desktop. The vulnerability arises from default administrative credentials, enabling a local attacker to gain full access to the application. The linked sources confirm the issue exists and that mitigations/patches have been released by vendors in some reports; p...

8.4CVSS7.7AI score0.00383EPSS
CVE
CVE
added 2019/03/19 7:47 p.m.39 views

CVE-2018-17486

CVE-2018-17486 affects Lobby Track Desktop (Jolly Technologies). In kiosk mode, an error in the find visitor function could let a local attacker bypass security restrictions and, by visiting the kiosk and using the find visitor option, delete visitor records or remove a host. The available connec...

5.5CVSS5.4AI score0.00316EPSS
CVE
CVE
added 2019/03/19 7:47 p.m.35 views

CVE-2018-17488

CVE-2018-17488 affects Lobby Track Desktop. A local attacker could gain elevated privileges due to an error in the printer dialog that enables breaking out of kiosk mode when visiting the kiosk and accessing the print badge screen; exploitation would occur via the command line. The primary source...

8.4CVSS7.7AI score0.00359EPSS