Yaron Shahrabani

**Name of the Vulnerable Software and Affected Versions** fprintd versions 1.94.3 and earlier **Description** The issue is related to the lack of a security attention mechanism in fprintd, which may lead to unexpected actions being authorized by `auth sufficient pam fprintd.so` for Sudo. This could potentially allow unauthorized access. The supplier disputes this issue, suggesting that the resolution would involve modifying the PAM configuration to restrict `pam fprintd.so` to front-ends that implement a proper attention mechanism. **Recommendations** For fprintd versions 1.94.3 and earlier, consider modifying the PAM configuration to restrict `pam fprintd.so` to front-ends that implement a proper attention mechanism as a temporary workaround. Restrict access to `pam fprintd.so` to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.