IBM researchers have discovered a security flaw in the digital systems in office buildings which allows visitors to check in and get access badges.
The researchers found loopholes that could allow the visitor to break out of the kiosk and interact with the underlying Windows OS, putting the system vulnerable to malware or free access to the database.
Accessing the database could allow scamsters to know who was visiting the office, complete with information about sensitive details allowing them to impersonate the expected visitor to access the office without permission, Fast Company reported.
The digital check-in systems affected by the vulnerability in including Lobby Track Desktop, EasyLobby Solo, eVisitorPass, Envoy Passport, and The Receptionist for iPad.
The system vendors were notified by IBM so they could issue patches before disclosing the vulnerabilities.