CVE-2018-17483

EUVD-2018-9236
Lobby Track Desktop could allow a local attacker to obtain sensitive information, caused by an error in Reports while in kiosk mode. By visiting the kiosk and viewing the driver's license column, an attacker could exploit this vulnerability to view the driver's license number and other personal information.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
2.9 LOW
LOCAL
HIGH
NONE
CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
ibmCNA
2.9 LOW
LOCAL
HIGH
NONE
CVSS:3.0/AV:L/A:N/PR:N/I:N/UI:N/S:U/C:L/AC:H/RC:R/E:U/RL:U
Base Score
CVSS 3.x
EPSS Score
Percentile: 16%
Affected Products (NVD)
VendorProductVersion
jollytechlobby_track
8.2.186
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/149643
https://exchange.xforce.ibmcloud.com/vulnerabilities/149643