CVE-2024-37408

Name of the Vulnerable Software and Affected Versions fprintd versions 1.94.3 and earlier

Description The issue is related to the lack of a security attention mechanism in fprintd, which may lead to unexpected actions being authorized by auth sufficient pam fprintd.so for Sudo. This could potentially allow unauthorized access. The supplier disputes this issue, suggesting that the resolution would involve modifying the PAM configuration to restrict pam fprintd.so to front-ends that implement a proper attention mechanism.

Recommendations For fprintd versions 1.94.3 and earlier, consider modifying the PAM configuration to restrict pam fprintd.so to front-ends that implement a proper attention mechanism as a temporary workaround. Restrict access to pam fprintd.so to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.