| |
Vulnerability CVE-2018-17484
Published: 2019-03-21
| Description: |
Lobby Track Desktop could allow a local attacker to obtain sensitive information, caused by an error in Sample Database.mdb database while in kiosk mode. By using attack vectors outlined in kiosk breakout, an attacker could exploit this vulnerability to view and edit the database. |
Type:
CWE-200 (Information Exposure)
CVSS2 => (AV:L/AC:L/Au:N/C:P/I:P/A:N)
| CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
3.6/10 |
4.9/10 |
3.9/10 |
| Exploit range |
Attack complexity |
Authentication |
Local |
Low |
No required |
| Confidentiality impact |
Integrity impact |
Availability impact |
Partial |
Partial |
None |
References: |
https://exchange.xforce.ibmcloud.com/vulnerabilities/149644
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
