Local Attacker Exploits Security Bypass in Lobby Track Desktop's Find Visitor Function in Kiosk Mode

Local Attacker Exploits Security Bypass in Lobby Track Desktop's Find Visitor Function in Kiosk Mode

CVE-2018-17486 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:P

Lobby Track Desktop could allow a local attacker to bypass security restrictions, caused by an error in the find visitor function while in kiosk mode. By visiting the kiosk and selecting find visitor, an attacker could exploit this vulnerability to delete visitor records or remove a host.

Learn more about our Cis Benchmark Audit For Apple Ios.