EasyLobby Solo could allow a local attacker to obtain sensitive information, caused by the storing of the social security number in plaintext. By visiting the kiosk and viewing the Visitor table of the database, an attacker could exploit this vulnerability to view stored social security numbers.
References
Link | Resource |
---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/149649 | Third Party Advisory VDB Entry |
Configurations
Information
Published : 2019-03-21 09:00
Updated : 2019-10-09 16:36
NVD link : CVE-2018-17489
Mitre link : CVE-2018-17489
JSON object : View
CWE
CWE-312
Cleartext Storage of Sensitive Information
Products Affected
hidglobal
- easylobby_solo