Vulnerabilities > CVE-2018-17487 - Unspecified vulnerability in Jollytech Lobby Track 8.2.186

CVSS 4.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

jollytech

NVD

Published: 2019-03-21

Updated: 2019-10-09

Summary

Lobby Track Desktop could allow a local attacker to gain elevated privileges on the system, caused by an error in the printer dialog. By visiting the kiosk and signing in as a visitor, an attacker could exploit this vulnerability using the command line to break out of kiosk mode.

Vulnerable Configurations

Part	Description	Count
Application	Jollytech Jollytech Lobby Track 8.2.186	1

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/149647