Vulnerabilities > CVE-2018-17491 - Missing Authorization vulnerability in Hidglobal Easylobby Solo 11.0.4563

047910
CVSS 7.2 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
local
low complexity
hidglobal
CWE-862

Summary

EasyLobby Solo could allow a local attacker to gain elevated privileges on the system. By visiting the kiosk and typing "esc" to exit the program, an attacker could exploit this vulnerability to perform unauthorized actions on the computer.

Vulnerable Configurations

Part Description Count
Application
Hidglobal
1

Common Weakness Enumeration (CWE)