CVE-2017-14972
HIGHInFocus Mondopad 2.2.08 - Authentication Bypass via Task Manager
Title source: llmDescription
InFocus Mondopad 2.2.08 is vulnerable to authentication bypass when accessing uploaded files by entering Control-Alt-Delete, and then using Task Manager to reach a file.
References (1)
Core 1
Core References
Various Sources x_refsource_misc
https://raw.githubusercontent.com/badbiddy/Vulnerability-Disclosure/master/InFocus%20Mondopad%20%3C%202.2.08%20-%20CVE-2017-14972
Scores
CVSS v3
7.5
EPSS
0.0131
EPSS Percentile
67.0%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-287
Status
published
Products (1)
infocus/mondopad
2.2.08
Published
Oct 09, 2017
Tracked Since
Feb 18, 2026