28 matches found
EUVD-2017-12879
Malware in sbrugna...
EUVD-2015-3367
Malware in sbrugna...
EUVD-2016-3477
Malware in sbrugna...
PT-2018-13079 · Telegram · Org.Telegram.Messenger
Name of the Vulnerable Software and Affected Versions: org.telegram.messenger application version 4.8.11 Description: An issue in the FingerprintManager class for Biometric validation allows authentication bypass through the callback method from onAuthenticationFailed to onAuthenticationSucceeded...
PT-2018-11178 · Dropbox · Com.Dropbox.Android
Name of the Vulnerable Software and Affected Versions: com.dropbox.android version 98.2.2 Description: An issue in the com.dropbox.android application allows authentication bypass through the FingerprintManager class for Biometric validation. This is possible because the fingerprint API, in...
Lenovo Fingerprint Manager Pro for Windows 7, 8, and 8.1 only (not 10) Insecure Credential Storage - Lenovo Support NL
No description provided...
The software-hardware device’s vulnerability regarding user authentication based on fingerprint recognition in Lenovo Fingerprint Manager Pro allows a intruder to gain access to users’ account information due to the use of a pre-installed account and the flaws in the encryption algorithm.
The vulnerability of the software-hardware solution for implementing user authentication based on fingerprint recognition in Lenovo Fingerprint Manager Pro is related to the use of a pre-installed account and deficiencies in the encryption algorithm. Exploiting this vulnerability can allow an...
Hard-coded Password Lets Attackers Bypass Lenovo's Fingerprint Scanner
Lenovo has recently rolled out security patches for a severe vulnerability in its Fingerprint Manager Pro software that could allow leak sensitive data stored by the users. Fingerprint Manager Pro is a utility for Microsoft Windows 7, 8 and 8.1 operating systems that allows users to log into thei...
Lenovo Fixes Hardcoded Password Flaw Impacting ThinkPad Fingerprint Scanners
PC maker Lenovo issued a fix for a hardcoded password flaw impacting ThinkPad, ThinkCentre and ThinkStation laptops. The flaw affects nearly a dozen Lenovo laptop models that run versions of Microsoft Windows 7, 8 and the 8.1 operating system. The vulnerability was disclosed by Lenovo on Thursday...
CVE-2017-3762
Sensitive data stored by Lenovo Fingerprint Manager Pro, version 8.01.86 and earlier, including users' Windows logon credentials and fingerprint data, is encrypted using a weak algorithm, contains a hard-coded password, and is accessible to all users with local non-administrative access to the...
Hardcoded credentials
Sensitive data stored by Lenovo Fingerprint Manager Pro, version 8.01.86 and earlier, including users' Windows logon credentials and fingerprint data, is encrypted using a weak algorithm, contains a hard-coded password, and is accessible to all users with local non-administrative access to the...
CVE-2017-3762
Sensitive data stored by Lenovo Fingerprint Manager Pro, version 8.01.86 and earlier, including users' Windows logon credentials and fingerprint data, is encrypted using a weak algorithm, contains a hard-coded password, and is accessible to all users with local non-administrative access to the...
CVE-2017-3762
Sensitive data stored by Lenovo Fingerprint Manager Pro, version 8.01.86 and earlier, including users' Windows logon credentials and fingerprint data, is encrypted using a weak algorithm, contains a hard-coded password, and is accessible to all users with local non-administrative access to the...
CVE-2017-3762
Lenovo Fingerprint Manager Pro (Windows 7/8/8.1) versions 8.01.86 and earlier store sensitive data (Windows logon credentials, fingerprint data) with weak encryption and a hard-coded password, accessible to all local non-administrative users. This CVE-2017-3762 entry is addressed by Lenovo’s advi...
Hard-coded passwords for multiple Lenovo products Fingerprint Manager Pro
Lenovo ThinkPad L560 and others are computer products of the Chinese company Lenovo Lenovo.Fingerprint Manager Pro is one of the fingerprint recognition sensor drivers. A security vulnerability exists in Fingerprint Manager Pro 8.01.86 and earlier versions of several Lenovo products, which stems...
Lenovo Fingerprint Manager Privilege Access Control Vulnerability
Lenovo Fingerprint Manager is a set of fingerprint sensor drivers developed by Lenovo for the Thinkpad series. A privilege access control vulnerability exists in Lenovo Fingerprint Manager versions prior to 8.01.42, which stems from Services and files with incorrect access control lists ACLs. A...
Code injection
Services and files in Lenovo Fingerprint Manager before 8.01.42 have incorrect ACLs, which allows local users to invalidate local checks and gain privileges via standard filesystem operations...
CVE-2015-3321
Services and files in Lenovo Fingerprint Manager before 8.01.42 have incorrect ACLs, which allows local users to invalidate local checks and gain privileges via standard filesystem operations...
CVE-2015-3321
CVE-2015-3321 affects Lenovo Fingerprint Manager prior to 8.01.42. The root cause is incorrect ACLs on services and files, allowing a local user to invalidate local checks and escalate privileges by executing with administrator rights. Affected products include a range of Lenovo ThinkCentre/Think...
CVE-2015-3321
Services and files in Lenovo Fingerprint Manager before 8.01.42 have incorrect ACLs, which allows local users to invalidate local checks and gain privileges via standard filesystem operations...