PT-2021-3755 · Microsoft · Windows
Omer Tsarfati
·
Published
2021-07-13
·
Updated
2023-12-28
·
CVE-2021-34466
CVSS v2.0
6.6
Medium
| Vector | AV:L/AC:L/Au:N/C:C/I:C/A:N |
Name of the Vulnerable Software and Affected Versions
Windows (affected versions not specified)
Description
The issue is related to a security feature bypass in the Windows Hello facial recognition component, which is caused by weaknesses in the authorization mechanism. This can allow an attacker to bypass security mechanisms.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Authentication Bypass by Spoofing
Incorrect Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Windows