Weak Access Control in Lenovo Fingerprint Manager and Touch Fingerprint Software Allows Privilege Escalation

Weak Access Control in Lenovo Fingerprint Manager and Touch Fingerprint Software Allows Privilege Escalation

CVE-2016-2393 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Lenovo Fingerprint Manager before 8.01.57 and Touch Fingerprint before 1.00.08 use weak ACLs for unspecified (1) services and (2) files, which allows local users to gain privileges by invalidating local checks.

Learn more about our Cis Benchmark Audit For Print Devices.