CVE Vulnerabilities

CVE-2016-2393

Published: Apr 11, 2016 | Modified: Apr 14, 2016
CVSS 3.x
7.8
HIGH
Source:
NVD
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVSS 2.x
7.2 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Lenovo Fingerprint Manager before 8.01.57 and Touch Fingerprint before 1.00.08 use weak ACLs for unspecified (1) services and (2) files, which allows local users to gain privileges by invalidating local checks.

Affected Software

Name Vendor Start Version End Version
Fingerprint_manager Lenovo * 8.01.56 (including)
Touch_fingerprint Lenovo * 1.00.07 (including)

References