VYPR
Unrated severityNVD Advisory· Published May 22, 2014· Updated Jun 17, 2026

CVE-2014-2938

CVE-2014-2938

Description

Hanvon FaceID before 1.007.110 does not require authentication, which allows remote attackers to modify access-control and attendance-tracking data via API commands.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

9
  • Hanon/Faceid4 versions
    cpe:2.3:h:hanon:faceid:f710:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:h:hanon:faceid:f710:*:*:*:*:*:*:*
    • cpe:2.3:h:hanon:faceid:f810:*:*:*:*:*:*:*
    • cpe:2.3:h:hanon:faceid:fa007:*:*:*:*:*:*:*
    • cpe:2.3:h:hanon:faceid:fk800:*:*:*:*:*:*:*
  • cpe:2.3:o:hanon:faceid_f710_firmware:1.007.109:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:hanon:faceid_f710_firmware:1.007.109:*:*:*:*:*:*:*
    • cpe:2.3:o:hanon:faceid_fa007_firmware:*:*:*:*:*:*:*:*range: <=1.007.109
  • cpe:2.3:o:hanon:faceid_f810_firmware:*:*:*:*:*:*:*:*
    Range: <=1.007.109
  • cpe:2.3:o:hanon:faceid_fk800_firmware:*:*:*:*:*:*:*:*
    Range: <=1.007.109
  • Hanvon/FaceIDllm-create
    Range: <1.007.110

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.