SEAT Queue Ticket Kiosk Java RMI Registry Deserialization Vulnerability

A deserialization vulnerability has been identified in SEAT Queue Ticket Kiosk versions prior to 20250827. This issue arises in the Java RMI Registry Handler component, where untrusted data is deserialized without proper validation, allowing for potential manipulation. The vulnerability can be exploited over the local network, but requires high complexity, making it difficult to exploit.

Impact

Exploitation of this vulnerability allows for unauthorized deserialization of data, which could lead to remote code execution or other malicious actions, depending on the application's handling of the deserialized objects.

Reproduction

The vulnerability can be reproduced by accessing the Java RMI Registry over the local network. Tools like Remote Method Guesser can be used to enumerate the registry, revealing bound object names and their interface types. This information can be used to understand the application architecture and potentially exploit further.

Remediation

It is recommended to apply restrictive firewall rules to block unauthorized access to the Java RMI Registry.