There are vulnerabilities that allow hackers to bypass the fingerprint security mechanism of Lenovo computers

The Fingerprint Manager Pro program of Microsoft Windows 7, 8 and 8.1 allows users to store data, log in personal accounts on websites, log in to a lenovo computer via fingerprint There are many vulnerabilities that may allow hackers to access user sensitive data.

The Fingerprint Manager Pro program of Microsoft Windows 7, 8 and 8.1 allows users to store data, log in personal accounts on websites, log in to a lenovo computer via fingerprint There are many vulnerabilities that may allow hackers to access user sensitive data.

All sensitive data including Windows login information, user fingerprint data stored when using this software are encrypted but the encryption algorithm is not strong enough.

There are vulnerabilities that allow hackers to bypass the fingerprint security mechanism of Lenovo computers Picture 1There are vulnerabilities that allow hackers to bypass the fingerprint security mechanism of Lenovo computers Picture 1

Lenovo said that Fingerprint Manager Pro 8.01.86 version contains a default password that allows the software to not need administrative rights of the computer and can still access all user accounts (CVE-2017 vulnerability code -3762).

The vulnerability affects Lenovo ThinkPad, ThinkCentry and ThinkStatins laptops running Windows 7, 8 and 8.1. Below is a detailed list of devices affected by this vulnerability:

• ThinkPad L560

• ThinkPad P40 Yoga, P50s

• ThinkPad T440, T440p, T440s, T450, T450s, T460, T540p, T550, T560

• ThinkPad W540, W541, W550s

• ThinkPad X1 Carbon (Type 20A7, 20A8), X1 Carbon (Type 20BS, 20BT)

• ThinkPad X240, X240s, X250, X260

• ThinkPad Yoga 14 (20FY), Yoga 460

• ThinkCentre M73, M73z, M78, M79, M83, M93, M93p, M93z

• ThinkStation E32, P300, P500, P700, P900

To fix this vulnerability, computer manufacturers recommend that ThinkPad customers need to update Fingerprint Manager Pro to version 8.01.87 or higher. Windows 10 users will not be affected by this vulnerability because Microsoft has added the fingerprint reader feature on Windows 10 operating system.

See more:

  1. Trick to use Samsung Galaxy S8 / S8 Plus fingerprint sensor
  2. Critical vulnerabilities discovered in Framework Electron, Skype, Slack, Twitch and a series of affected apps
  3. The Ministry of Public Security warned users to warn of bank account theft when withdrawing money at ATMs
  4. Firefox Quantum 58 has an official version for Windows, enhanced security and has many new features
4 ★ | 1 Vote