13 matches found
Model Inversion Attacks Meet Cryptographic Fuzzy Extractors
Model inversion attacks pose an open challenge to privacy-sensitive applications that use machine learning ML models. For example, face authentication systems use modern ML models to compute embedding vectors from face images of the enrolled users and store them. If leaked, inversion attacks can...
EUVD-2019-18572
Malware in sbrugna...
EUVD-2021-7414
Malicious code in bioql PyPI...
CVE-2021-1950
Improper cleaning of secure memory between authenticated users can lead to face authentication bypass in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking...
PT-2022-14602 · Google · Android
Name of the Vulnerable Software and Affected Versions: Android versions prior to the fixed version Description: In the keymaster ipc.cpp, there is a possibility to force gatekeeper, fingerprint, and faceauth to use a known HMAC key. This could lead to local escalation of privilege with no...
CVE-2021-1950
Improper cleaning of secure memory between authenticated users can lead to face authentication bypass in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking...
Authentication flaw
Improper cleaning of secure memory between authenticated users can lead to face authentication bypass in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking...
Qualcomm 芯片 授权问题漏洞
A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way of miniaturizing circuits including primarily semiconductor devices, but also passive components, etc. and from time to time fabricated on the surface of semiconductor wafers. An authorization issue vulnerability exists in multiple...
CVE-2019-9196
The Face authentication component in Aware mobile liveness 2.2.1 sdk 2.2.0 for Knomi allows a Biometrical Liveness authentication bypass via parameter tampering of the /knomi/analyze securitylevel field...
CVE-2019-9196
The Face authentication component in Aware mobile liveness 2.2.1 sdk 2.2.0 for Knomi allows a Biometrical Liveness authentication bypass via parameter tampering of the /knomi/analyze securitylevel field...
CVE-2019-9196
The Face authentication component in Aware mobile liveness 2.2.1 sdk 2.2.0 for Knomi allows a Biometrical Liveness authentication bypass via parameter tampering of the /knomi/analyze securitylevel field...
CVE-2019-9196
The CVE-2019-9196 entry concerns the Face authentication component in Aware Mobile Liveness (Knomi) SDKs around 2.2.0–2.2.1, where a vulnerability allows Biometrical Liveness authentication to be bypassed by tampering with the security_level parameter in the /knomi/analyze call. Root cause is ins...
Aware Mobile Liveness SDK Face authentication component authorization issue vulnerability
An authorization issue vulnerability exists in the Face authentication component of Aware Mobile Liveness SDK version 2.2.0. The vulnerability arises from a lack of authentication measures or insufficient authentication strength in a networked system or product, and allows Biometrical Liveness...