|
245941
|
3.3 |
LOW
Local
|
thereceptionist
|
the_receptionist_for_ipad
|
The Receptionist for iPad could allow a local attacker to obtain sensitive information, caused by an error in the contact.json file. An attacker could exploit this vulnerability to obtain the contact…
|
CWE-200
Information Exposure
|
CVE-2018-17502
|
2024-11-21 12:54 |
2019-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
245942
|
7.8 |
HIGH
Local
|
envoy
|
passport
|
Envoy Passport for Android and Envoy Passport for iPhone could allow a local attacker to obtain sensitive information, caused by the storing of hardcoded OAuth Creds in plaintext. An attacker could e…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2018-17500
|
2024-11-21 12:54 |
2019-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
245943
|
5.5 |
MEDIUM
Local
|
envoy
|
passport
|
Envoy Passport for Android and Envoy Passport for iPhone could allow a local attacker to obtain sensitive information, caused by the storing of unencrypted data in logs. An attacker could exploit thi…
|
CWE-532
CWE-312
Inclusion of Sensitive Information in Log Files
Cleartext Storage of Sensitive Information
|
CVE-2018-17499
|
2024-11-21 12:54 |
2019-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
245944
|
7.8 |
HIGH
Local
|
thresholdsecurity
|
evisitorpass
|
eVisitorPass contains default administrative credentials. An attacker could exploit this vulnerability to gain full access to the application.
|
CWE-1188
Insecure Default Initialization of Resource
|
CVE-2018-17497
|
2024-11-21 12:54 |
2019-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
245945
|
7.8 |
HIGH
Local
|
thresholdsecurity
|
evisitorpass
|
eVisitorPass could allow a local attacker to gain elevated privileges on the system, caused by an error while in kiosk mode. By visiting the kiosk and typing ctrl+shift+esc, an attacker could exploit…
|
NVD-CWE-noinfo
|
CVE-2018-17496
|
2024-11-21 12:54 |
2019-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
245946
|
7.8 |
HIGH
Local
|
thresholdsecurity
|
evisitorpass
|
eVisitorPass could allow a local attacker to gain elevated privileges on the system, caused by an error with the Virtual Keyboard Help Dialog. By visiting the kiosk and removing the program from full…
|
NVD-CWE-noinfo
|
CVE-2018-17495
|
2024-11-21 12:54 |
2019-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
245947
|
7.8 |
HIGH
Local
|
thresholdsecurity
|
evisitorpass
|
eVisitorPass could allow a local attacker to gain elevated privileges on the system, caused by an error with the Virtual Keyboard Start Menu. By visiting the kiosk and pressing windows key twice, an …
|
NVD-CWE-noinfo
|
CVE-2018-17494
|
2024-11-21 12:54 |
2019-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
245948
|
7.8 |
HIGH
Local
|
thresholdsecurity
|
evisitorpass
|
eVisitorPass could allow a local attacker to gain elevated privileges on the system, caused by an error with the Fullscreen button. By visiting the kiosk and clicking the full screen button in the bo…
|
NVD-CWE-noinfo
|
CVE-2018-17493
|
2024-11-21 12:54 |
2019-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
245949
|
7.8 |
HIGH
Local
|
hidglobal
|
easylobby_solo
|
EasyLobby Solo contains default administrative credentials. An attacker could exploit this vulnerability to gain full access to the application.
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2018-17492
|
2024-11-21 12:54 |
2019-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
245950
|
7.8 |
HIGH
Local
|
hidglobal
|
easylobby_solo
|
EasyLobby Solo could allow a local attacker to gain elevated privileges on the system. By visiting the kiosk and typing "esc" to exit the program, an attacker could exploit this vulnerability to perf…
|
CWE-862
Missing Authorization
|
CVE-2018-17491
|
2024-11-21 12:54 |
2019-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
