Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.8
CVSSv3

CVE-2022-36220

Published: 19/08/2022 Updated: 22/08/2022
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Ethz

Vulnerability Summary

Kiosk breakout (without quit password) in Safe Exam Browser (Windows) <3.4.0, which allows an malicious user to achieve code execution via the browsers' print dialog.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

ethz safe exam browser

Github Repositories

https://github.com/jomoza/KioskBypases-Malduino

Compilation of scripts and resources used for the escape, evasion and bypass of tactile kiosks. There are different cases depending on the specifics of each kiosk device.

KioskBypases Malduino Compilation of scripts and resources used for the escape, evasion and bypass of tactile kiosks There are different cases depending on the specifics of each kiosk device Windows Kiosk BadUSB/FlipperZero Big Evasion In this repository you can find the same proof of concept, along with other more reduced ones to integrate it into an Arduino Nano / Leonardo

References

NVD-CWE-noinfohttps://github.com/SafeExamBrowser/seb-win-refactoring/issues/434https://safeexambrowser.org/windows/win_release_notes_en.htmlhttps://nvd.nist.govhttps://github.com/jomoza/KioskBypases-Malduino
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4644unprivilegedCVE-2024-3494CVE-2024-22460CVE-2024-26026CVE-2024-23473firewallCVE-2024-28889XML external entity
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook