Hanvon · Hanvon Faceid · CVE-2014-2938
**Name of the Vulnerable Software and Affected Versions**
Hanvon FaceID versions prior to 1.007.110
**Description**
The issue allows remote attackers to modify access-control and attendance-tracking data without requiring authentication. This can be achieved via API commands.
**Recommendations**
For Hanvon FaceID versions prior to 1.007.110, update to version 1.007.110 or later to resolve the issue.