CVE-2018-17489

Summary

EasyLobby Solo could allow a local attacker to obtain sensitive information, caused by the storing of the social security number in plaintext. By visiting the kiosk and viewing the Visitor table of the database, an attacker could exploit this vulnerability to view stored social security numbers.

Affected Software

VendorProductVersion RangeStatus
HID GlobalEasyLobby Solo11.0.4563affected

Weaknesses

  • Obtain Information

ADP Enrichment

CVE Program Container

Additional References

References