EUVD-2025-206079

COMMAX Biometric Access Control System 1.0.0 contains an unauthenticated reflected cross-site scripting vulnerability in cookie parameters 'CMXADMINNM' and 'CMXCOMPLEXNM'. Attackers can inject malicious HTML and JavaScript code into these cookie values to execute arbitrary scripts in a victim's...

EMPalm: Exfiltrating Palm Biometric Data Via Electromagnetic Side-Channels

Palm recognition has emerged as a dominant biometric authentication technology in critical infrastructure. These systems operate in either single-modal form, using palmprint or palmvein individually, or dual-modal form, fusing the two modalities. Despite this diversity, they share similar hardwar...

EUVD-2019-5042

Malware in sbrugna...

Deep Learning Models for Robust Facial Liveness Detection

In the rapidly evolving landscape of digital security, biometric authentication systems, particularly facial recognition, have emerged as integral components of various security protocols. However, the reliability of these systems is compromised by sophisticated spoofing attacks, where imposters...

CVE-2023-7103

Authentication Bypass by Primary Weakness vulnerability in ZKSoftware Biometric Security Solutions UFace 5 allows Authentication Bypass. This issue affects UFace 5: through 12022024...

CVE-2024-53835

there is a possible biometric bypass due to an unusual root cause. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2023-7103

Authentication Bypass by Primary Weakness vulnerability in ZKSoftware Biometric Security Solutions UFace 5 allows Authentication Bypass. This issue affects UFace 5: through 12022024...

CVE-2023-7103

Authentication Bypass by Primary Weakness vulnerability in ZKSoftware Biometric Security Solutions UFace 5 allows Authentication Bypass. This issue affects UFace 5: through 12022024...

CVE-2023-7103 Authentication Bypass in ZKSoftware's UFace 5

Authentication Bypass by Primary Weakness vulnerability in ZKSoftware Biometric Security Solutions UFace 5 allows Authentication Bypass. This issue affects UFace 5: through 12022024...

CVE-2023-7103 Authentication Bypass in ZKSoftware's UFace 5

Authentication Bypass by Primary Weakness vulnerability in ZKSoftware Biometric Security Solutions UFace 5 allows Authentication Bypass. This issue affects UFace 5: through 12022024...

CVE-2023-7103

CVE-2023-7103 affects ZKSoftware Biometric Security Solutions UFace 5 (through 12022024). A primary weakness enables authentication bypass, reported across multiple sources. CVSS v3.1 base score 9.8 (CRITICAL): network access, no privileges, no user interaction required; confidentiality, integrit...

ZKSoftware Biometric Security Solutions UFace 5 Security Vulnerability

ZKSoftware Biometric Security Solutions UFace 5 is a face recognition system for access control from ZKSoftware, Turkey. A security vulnerability exists in ZKSoftware Biometric Security Solutions UFace 5 12022024 and prior versions that stems from allowing authentication bypass...

Deepfake Attacks Are About to Surge, Experts Warn

Artificial intelligence and the rise of deepfake technology is something cybersecurity researchers have cautioned about for years and now it’s officially arrived. Cybercriminals are increasingly sharing, developing and deploying deepfake technologies to bypass biometric security protections, and ...

3D printed fingerprints can unlock your device with 80% success rate

By Sudais Asif Researchers have demonstrated how 3D printing can be used to clone fingerprints with an 80% success rate of bypassing biometric security. This is a post from HackRead.com Read the original post: 3D printed fingerprints can unlock your device with 80% success rate...

Android Users Can Now Log in to Google Services Using Fingerprint

If you're using Chrome on Android, you can now sign-in to your Google account and some of the other Google services by simply using your fingerprint, instead of typing in your password every time. Google is rolling out a new feature, called "local user verification ," that allows you to log in to...

'Unhackable' Biometric USB Offers Up Passwords in Plain Text

A USB stick dubbed eyeDisk that uses iris recognition to unlock the drive claims to be “unhackable” – only, it isn’t. In fact, a simple Wireshark analysis revealed the device’s password – in plain text. David Lodge of Pen Test Partners noticed the product on Kickstarter, where it amassed enough...

Android Gets New Anti-Spoofing Feature to Make Biometric Authentication Secure

Google just announced its plan to introduce a new anti-spoofing feature for its Android operating system that makes its biometric authentication mechanisms more secure than ever. Biometric authentications, like the fingerprint, IRIS, or face recognition technologies, smoothen the process of...

Hacker Finds a Simple Way to Fool IRIS Biometric Security Systems

Biometric security systems that involve person's unique identification ID, such as Retinal, IRIS, Fingerprint or DNA, are still evolving to change our lives for the better even though the biometric scanning technology still has many concerns such as information privacy, and physical privacy. In...

Like Apple's TouchID, Galaxy S5 Vulnerable to Fingerprint Hack

Researchers published a video this week demonstrating how Samsung’s latest entry in the smartphone arena, the Galaxy S5, is vulnerable to a hack that involves lifting and copying fingerprints to trick the phone’s biometric sensor. Much like the Apple iPhone 5S, the smartphone, which first hit the...

Finally, iPhone's Fingerprint Scanner 'TouchID' hacked first by German Hackers

Apple has marketed TouchID both as a convenience and as a security feature. "Your fingerprint is one of the best passwords in the world," says an Apple promotional video. A European hacker group has announced a simple, replicable method for spoofing Apple's TouchID fingerprint authentication...