2 matches found
CVE-2023-6482
CVE-2023-6482 affects Synaptics Fingerprint Driver. The root cause is use of an encryption key derived from static host information, enabling an attacker with physical access to set up a TLS session with the fingerprint sensor and issue restricted commands, potentially enrolling a fingerprint int...
CVE-2021-3675
CVE-2021-3675 affects Synaptics Fingerprint Driver’s SGX-enabled library synaTEE.signed.dll with improper input validation, enabling a local authorized attacker to overwrite a heap tag and potentially leak confidentiality. Affected versions include multiple 5.x and 6.x branches before specified b...