Описание
A vulnerability was reported in ThinkPlus configuration software that could allow a local authenticated user to bypass ThinkPlus device authentication and enroll an untrusted fingerprint.
Затрагиваемое ПО
Lenovo Thinkplus fu100 firmwareLenovo Thinkplus fu100Lenovo Thinkplus fu200 firmwareLenovo Thinkplus fu200Lenovo Thinkplus tu800 firmwareLenovo Thinkplus tu800Lenovo Thinkplus tsd303 firmwareLenovo Thinkplus tsd303
CVSS
| Балл | 7.8 — высокая |
| Вектор | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Источники
https://iknow.lenovo.com.cn/detail/436983