PT-2024-19953 · Microsoft+2 · Windows Shell+2
Published
2024-04-05
·
Updated
2024-04-08
·
CVE-2024-23592
CVSS v3.1
6.3
Medium
| Vector | AV:P/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Lenovo devices with Synaptics fingerprint readers (affected versions not specified)
Description
An authentication bypass issue was reported in Lenovo devices with Synaptics fingerprint readers. This could allow an attacker with physical access to replay fingerprints and bypass Windows Hello authentication.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Improperly Implemented Security Check for Standard
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Lenovo
Synaptics Fingerprint Readers
Windows Shell