Lenovo Authentication Bypass Vulnerability
Lenovo Logo

Lenovo Authentication Bypass Vulnerability

Thendo Tshikota Thendo Tshikota

Thendo Tshikota

Computer Scientist

发布日期: 2024年4月19日
+ 关注

A security flaw has been discovered in fingerprint readers used in Lenovo ThinkPad and Notebook models that use Windows Hello authentication with enrolled fingerprints. This flaw could allow attackers with physical access to your device to bypass your fingerprint security and gain full access to your computer.

Solutions and mitigations

Install the latest Windows updates.

For devices with Synaptics or ELAN fingerprint readers

Enable Windows Hello Enhanced Sign-in Security (ESS)

Upgrade to the latest driver version.

For devices with Goodix fingerprint readers

Upgrade to the latest driver version.

Vulnerability Details

CVE-ID: CVE-2024-23592

CVSS3.0 Score: 6.3 (Medium Severity)

Stay Safe Online Stay Safe Online

Stay Safe Online

194 位关注者

订阅

要查看或添加评论,请登录

Thendo Tshikota的更多文章

  • Apple Security Updates
    2024年5月27日

    Apple Security Updates

    iOS 17.5 and iPadOS 17.

  • Cuckoo: Spyware and Infostealer
    2024年5月7日

    Cuckoo: Spyware and Infostealer

    Beware Mac users, a new kind of malware called Cuckoo is lurking in the digital shadows. This recently discovered…

  • Every Update You Need to Install
    2024年5月1日

    Every Update You Need to Install

    This list provides information on the latest critical updates available for various operating systems, applications…

  • PlugX: A Self Reviving Malware with Global Reach
    2024年4月30日

    PlugX: A Self Reviving Malware with Global Reach

    The PlugX worm has become a persistent threat, evolving its tactics to stay relevant in the cybersecurity landscape…

  • From Friend to Fraud : Pig Butchering
    2024年4月29日

    From Friend to Fraud : Pig Butchering

    Pig butchering, a chilling name for a financial crime, has become a growing threat in the world of online investment…

  • Brokewell: The Android Malware Taking Over Devices
    2024年4月26日

    Brokewell: The Android Malware Taking Over Devices

    Brokewell, a dangerous new malware discovered in 2024, poses a significant threat to Android users. This banking trojan…

  • LightSpy Spyware: A Resurfacing Threat Targeting iPhones
    2024年4月25日

    LightSpy Spyware: A Resurfacing Threat Targeting iPhones

    LightSpy is a sophisticated spyware program targeting iPhone users, first discovered in 2020. This malicious software…

  • Trojans
    2024年4月24日

    Trojans

    Trojans, named after the infamous Trojan Horse of Greek mythology, are malicious software programs that masquerade as…

  • Threat 1: Social Engineering
    2024年4月23日

    Threat 1: Social Engineering

    In today's digital age, we fortify our defenses with firewalls, antivirus software, and complex passwords. Yet, these…

  • 5 Proven Steps to Safeguard Against Ransomware and Minimize its Impact
    2024年4月22日

    5 Proven Steps to Safeguard Against Ransomware and Minimize its Impact

    Ransomware is a growing threat to businesses of all sizes. This malicious software encrypts your data, making it…

社区洞察

其他会员也浏览了