Описание
Ariane Allegro Scenario Player through 2024-03-05, when Ariane Duo kiosk mode is used, allows physically proximate attackers to obtain sensitive information (such as hotel invoice content with PII), and potentially create unauthorized room keys, by entering a guest-search quote character and then accessing the underlying Windows OS.
EPSS
Процентиль: 25%
0.00084
Низкий
6.8 Medium
CVSS3
Дефекты
CWE-269
Связанные уязвимости
CVSS3: 6.8
github
больше 1 года назад
Ariane Allegro Scenario Player through 2024-03-05, when Ariane Duo kiosk mode is used, allows physically proximate attackers to obtain sensitive information (such as hotel invoice content with PII), and potentially create unauthorized room keys, by entering a guest-search quote character and then accessing the underlying Windows OS.
EPSS
Процентиль: 25%
0.00084
Низкий
6.8 Medium
CVSS3
Дефекты
CWE-269