CVE-2017-5634

The Norwegian Air Shuttle (aka norwegian.com) airline kiosk allows physically proximate attackers to bypass the intended "Please select booking identification" UI step, and obtain administrative privileges and network access on the underlying Windows OS, by accessing a touch-screen print icon to manipulate the print dialog.

CVSS v3.0 6.6 MEDIUM
CVSS v2.0 7.2 HIGH

6.6^/10

CVSS v3.0 : MEDIUM

Vector : AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability : 0.7 / Impact : 5.9

Attack Vector PHYSICAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

7.2^/10

CVSS v2.0 : HIGH

Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 3.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
https://www.youtube.com/watch?v=WSQW0ipnXQg	Third Party Advisory
https://www.youtube.com/watch?v=2j9gP5Qu2WA	Third Party Advisory
https://bugemot.com/bug/190	Third Party Advisory
http://www.securityfocus.com/bid/96230

Advertisement

Configurations

Configuration 1 (hide)

cpe:2.3:a:norwegian-air:norwegian_air_kiosk:-:*:*:*:*:*:*:*

Information

Published : 2017-02-09 08:59

Updated : 2019-10-02 17:03

NVD link : CVE-2017-5634

Mitre link : CVE-2017-5634

JSON object : View

CWE

CWE-668

Exposure of Resource to Wrong Sphere

Advertisement

Products Affected

norwegian-air

norwegian_air_kiosk

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://www.youtube.com/watch?v=WSQW0ipnXQg", "name": "https://www.youtube.com/watch?v=WSQW0ipnXQg", "tags": ["Third Party Advisory"], "refsource": "MISC"}, {"url": "https://www.youtube.com/watch?v=2j9gP5Qu2WA", "name": "https://www.youtube.com/watch?v=2j9gP5Qu2WA", "tags": ["Third Party Advisory"], "refsource": "MISC"}, {"url": "https://bugemot.com/bug/190", "name": "https://bugemot.com/bug/190", "tags": ["Third Party Advisory"], "refsource": "MISC"}, {"url": "http://www.securityfocus.com/bid/96230", "name": "96230", "tags": [], "refsource": "BID"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "The Norwegian Air Shuttle (aka norwegian.com) airline kiosk allows physically proximate attackers to bypass the intended \"Please select booking identification\" UI step, and obtain administrative privileges and network access on the underlying Windows OS, by accessing a touch-screen print icon to manipulate the print dialog."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-668"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2017-5634", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 7.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "baseMetricV3": {"cvssV3": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 6.6, "attackVector": "PHYSICAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 0.7}}, "publishedDate": "2017-02-09T16:59Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:norwegian-air:norwegian_air_kiosk:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2019-10-03T00:03Z"}