VYPR

Fingerprint Manager

by Lenovo

CVEs (3)

  • CVE-2017-3762HigJan 26, 2018
    risk 0.51cvss 7.8epss 0.00

    Sensitive data stored by Lenovo Fingerprint Manager Pro, version 8.01.86 and earlier, including users' Windows logon credentials and fingerprint data, is encrypted using a weak algorithm, contains a hard-coded password, and is accessible to all users with local…

  • CVE-2016-2393HigApr 11, 2016
    risk 0.51cvss 7.8epss 0.00

    Lenovo Fingerprint Manager before 8.01.57 and Touch Fingerprint before 1.00.08 use weak ACLs for unspecified (1) services and (2) files, which allows local users to gain privileges by invalidating local checks.

  • CVE-2015-3321MedOct 3, 2017
    risk 0.44cvss 6.7epss 0.00

    Services and files in Lenovo Fingerprint Manager before 8.01.42 have incorrect ACLs, which allows local users to invalidate local checks and gain privileges via standard filesystem operations.