CVE-2018-17495

Summary

eVisitorPass could allow a local attacker to gain elevated privileges on the system, caused by an error with the Virtual Keyboard Help Dialog. By visiting the kiosk and removing the program from fullscreen, an attacker could exploit this vulnerability using the terminal to launch the command prompt.

Affected Software

VendorProductVersion RangeStatus
VisitorPasseVisitorPass1.5.5.2affected

Weaknesses

  • Gain Privileges

ADP Enrichment

CVE Program Container

Additional References

References