本頁列出影響 thresholdsecurity evisitorpass 的已公開 CVE 漏洞(透過 NVD CPE 關聯)。每列包含嚴重程度評分、摘要與發布日期,便於識別與分析安全議題。
| CVE | 摘要 | 來源 | 最高 CVSS | EPSS % | 公開時間 | 更新時間 |
|---|---|---|---|---|---|---|
| CVE-2018-17497 | eVisitorPass contains default administrative credentials. An attacker could exploit this vulnerability to gain full access to the application. | [email protected] | 8.4 | 0.06% | 2019-03-21 | 2024-11-21 |
| CVE-2018-17496 | eVisitorPass could allow a local attacker to gain elevated privileges on the system, caused by an error while in kiosk mode. By visiting the kiosk and typing ctrl+shift+esc, an attacker could exploit this vulnerability to open the task manager to kill the process or launch new processes on the system. | [email protected] | 8.4 | 0.04% | 2019-03-21 | 2024-11-21 |
| CVE-2018-17495 | eVisitorPass could allow a local attacker to gain elevated privileges on the system, caused by an error with the Virtual Keyboard Help Dialog. By visiting the kiosk and removing the program from fullscreen, an attacker could exploit this vulnerability using the terminal to launch the command prompt. | [email protected] | 8.4 | 0.04% | 2019-03-21 | 2024-11-21 |
| CVE-2018-17494 | eVisitorPass could allow a local attacker to gain elevated privileges on the system, caused by an error with the Virtual Keyboard Start Menu. By visiting the kiosk and pressing windows key twice, an attacker could exploit this vulnerability to close the program and launch other processes on the system. | [email protected] | 8.4 | 0.04% | 2019-03-21 | 2024-11-21 |
| CVE-2018-17493 | eVisitorPass could allow a local attacker to gain elevated privileges on the system, caused by an error with the Fullscreen button. By visiting the kiosk and clicking the full screen button in the bottom right, an attacker could exploit this vulnerability to close the program and launch other processes on the system. | [email protected] | 8.4 | 0.04% | 2019-03-21 | 2024-11-21 |