cve/2018/CVE-2018-17495.md

### [CVE-2018-17495](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17495)
![](https://img.shields.io/static/v1?label=Product&message=eVisitorPass&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Gain%20Privileges&color=brighgreen)

### Description

eVisitorPass could allow a local attacker to gain elevated privileges on the system, caused by an error with the Virtual Keyboard Help Dialog. By visiting the kiosk and removing the program from fullscreen, an attacker could exploit this vulnerability using the terminal to launch the command prompt.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/nutc4k3/amazing-iot-security
Update Sun May 26 14:27:04 CEST 2024 2024-05-26 14:27:05 +02:00			`### [CVE-2018-17495](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17495)`
			`![](https://img.shields.io/static/v1?label=Product&message=eVisitorPass&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=Gain%20Privileges&color=brighgreen)`

			`### Description`

			`eVisitorPass could allow a local attacker to gain elevated privileges on the system, caused by an error with the Virtual Keyboard Help Dialog. By visiting the kiosk and removing the program from fullscreen, an attacker could exploit this vulnerability using the terminal to launch the command prompt.`

			`### POC`

			`#### Reference`
			`No PoCs from references.`

			`#### Github`
			`- https://github.com/nutc4k3/amazing-iot-security`