CVSS4
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
ACTIVE
CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:A/VC:N/SC:N/VI:H/SI:H/VA:N/SA:N/AU:N/U:Green/R:U/V:C/RE:M
AI Score
Confidence
High
EPSS
Percentile
9.0%
Improper Verification of Cryptographic Signature vulnerability in HYPR Passwordless on Windows allows Malicious Software Update.This issue affects HYPR Passwordless: before 9.1.
[
{
"defaultStatus": "unaffected",
"platforms": [
"Windows"
],
"product": "Passwordless",
"vendor": "HYPR",
"versions": [
{
"lessThan": "9.1",
"status": "affected",
"version": "0",
"versionType": "patch"
}
]
}
]