8.4
CVE-2018-17488
- EPSS 0.36%
- Veröffentlicht 21.03.2019 16:00:25
- Zuletzt bearbeitet 21.11.2024 03:54:31
- Quelle psirt@us.ibm.com
- CVE-Watchlists
- Unerledigt
LoginLobby Track Desktop could allow a local attacker to gain elevated privileges on the system, caused by an error in the printer dialog. By visiting the kiosk and accessing the print badge screen, an attacker could exploit this vulnerability using the command line to break out of kiosk mode.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Jollytech ≫ Lobby Track Version8.2.186 SwEditiondesktop
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.36% | 0.276 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 4.6 | 3.9 | 6.4 |
AV:L/AC:L/Au:N/C:P/I:P/A:P
|
| psirt@us.ibm.com | 8.4 | 2.5 | 5.9 |
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
https://exchange.xforce.ibmcloud.com/vulnerabilities/149648