Vulnerabilities > CVE-2018-17490 - Missing Authorization vulnerability in Hidglobal Easylobby Solo 11.0.4563

CVSS 7.1 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

hidglobal

CWE-862

NVD

Published: 2019-03-21

Updated: 2020-08-24

Summary

EasyLobby Solo is vulnerable to a denial of service. By visiting the kiosk and accessing the task manager, a local attacker could exploit this vulnerability to kill the process or launch new processes at will.

Vulnerable Configurations

Part	Description	Count
Application	Hidglobal Hidglobal Easylobby Solo 11.0.4563	1

Common Weakness Enumeration (CWE)

CWE-862 - Missing Authorization

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/149650