Services and files in Lenovo Fingerprint Manager before 8.01.42 have incorrect ACLs, which allows local users to invalidate local checks and gain privileges via standard filesystem operations.
References
Link | Resource |
---|---|
https://support.lenovo.com/us/en/product_security/lenovo_fpr | Issue Tracking Mitigation Vendor Advisory |
https://support.lenovo.com/us/en/product_security/lenovo_fpr | Issue Tracking Mitigation Vendor Advisory |
Configurations
History
21 Nov 2024, 02:29
Type | Values Removed | Values Added |
---|---|---|
References | () https://support.lenovo.com/us/en/product_security/lenovo_fpr - Issue Tracking, Mitigation, Vendor Advisory |
Information
Published : 2017-10-03 01:29
Updated : 2024-11-21 02:29
NVD link : CVE-2015-3321
Mitre link : CVE-2015-3321
CVE.ORG link : CVE-2015-3321
JSON object : View
Products Affected
lenovo
- fingerprint_manager
CWE
CWE-264
Permissions, Privileges, and Access Controls