Certain configuration available in the communication channel for encoders could expose sensitive data when reader configuration cards are programmed. This data could include credential and device administration...
7.8CVSS
7.5AI Score
0.0004EPSS
Sensitive data can be extracted from HID iCLASS SE reader configuration cards. This could include credential and device administrator...
5.3CVSS
5.2AI Score
0.001EPSS
The External Visitor Manager portal of HIDβs SAFE versions 5.8.0 through 5.11.3 are vulnerable to manipulation within web fields in the application programmable interface (API). An attacker could log in using account credentials available through a request generated by an internal user and then...
7.3CVSS
7.1AI Score
0.001EPSS
EasyLobby Solo is vulnerable to a denial of service. By visiting the kiosk and accessing the task manager, a local attacker could exploit this vulnerability to kill the process or launch new processes at...
7.7CVSS
6.7AI Score
0.0004EPSS
EasyLobby Solo could allow a local attacker to gain elevated privileges on the system. By visiting the kiosk and typing "esc" to exit the program, an attacker could exploit this vulnerability to perform unauthorized actions on the...
8.4CVSS
7.6AI Score
0.0004EPSS
EasyLobby Solo could allow a local attacker to obtain sensitive information, caused by the storing of the social security number in plaintext. By visiting the kiosk and viewing the Visitor table of the database, an attacker could exploit this vulnerability to view stored social security...
5.5CVSS
5.3AI Score
0.0004EPSS
EasyLobby Solo contains default administrative credentials. An attacker could exploit this vulnerability to gain full access to the...
8.4CVSS
7.7AI Score
0.0004EPSS