cvedb.io
CVE-2017-5634
MEDIUM · CVSS 6.6
EPSS exploitation probability: 0%
Published 2017-02-09T16:59:00.133 · Last modified 2026-06-17T01:20:53.460

Summary

The Norwegian Air Shuttle (aka norwegian.com) airline kiosk allows physically proximate attackers to bypass the intended "Please select booking identification" UI step, and obtain administrative privileges and network access on the underlying Windows OS, by accessing a touch-screen print icon to manipulate the print dialog.

Affected products

norwegian-air — norwegian_air_kiosk

Does this affect you?

Add your gear to cvedb and we'll alert you only when norwegian-air ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.