CVE-2018-17497

HIGH

eVisitorPass - Privilege Escalation

Title source: llm
STIX 2.1

Description

eVisitorPass contains default administrative credentials. An attacker could exploit this vulnerability to gain full access to the application.

References (1)

Scores

CVSS v3 8.4
EPSS 0.0006
EPSS Percentile 18.9%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-1188
Status published
Products (1)
thresholdsecurity/evisitorpass 1.5.5.2
Published Mar 21, 2019
Tracked Since Feb 18, 2026