CVE-2024-23592

An authentication bypass vulnerability was reported in Lenovo devices with Synaptics fingerprint readers that could allow an attacker with physical access to replay fingerprints and bypass Windows Hello authentication.
Configurations

No configuration.

History

21 Nov 2024, 08:57

Type Values Removed Values Added
References () https://support.lenovo.com/us/en/product_security/LEN-155804 - () https://support.lenovo.com/us/en/product_security/LEN-155804 -

08 Apr 2024, 18:49

Type Values Removed Values Added
Summary
  • (es) Se informó una vulnerabilidad de omisión de autenticación en dispositivos Lenovo con lectores de huellas digitales Synaptics que podría permitir a un atacante con acceso físico reproducir huellas digitales y omitir la autenticación de Windows Hello.

05 Apr 2024, 21:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-04-05 21:15

Updated : 2024-11-21 08:57


NVD link : CVE-2024-23592

Mitre link : CVE-2024-23592

CVE.ORG link : CVE-2024-23592


JSON object : View

Products Affected

No product.

CWE
CWE-358

Improperly Implemented Security Check for Standard