Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Security Vulnerability on Match-on-Chip FPR Architecture
Vulnerability Description
ELAN Match-on-Chip FPR solution has design fault about potential risk of valid SID leakage and enumeration with spoof sensor. This fault leads to that Windows Hello recognition would be bypass with cloning SID to cause broken account identity. Version which is lower than 3.0.12011.08009(Legacy)/3.3.12011.08103(ESS) would suffer this risk on DELL Inspiron platform.
CVSS Information
CVSS:3.1/AV:P/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L
Vulnerability Type
使用欺骗进行的认证绕过
Vulnerability Title
Dell EMC ELAN Match-on-Chip FPR solution 安全漏洞
Vulnerability Description
Dell EMC ELAN Match-on-Chip FPR solution是美国戴尔(Dell)公司的一个片上匹配 FPR 解决方案。 Dell EMC ELAN Match-on-Chip FPR solution 3.0.12011.08009(Legacy)/3.3.12011.08103(ESS)之前版本存在安全漏洞,该漏洞源于存在SID 泄漏漏洞,攻击者可利用该漏洞绕过Windows Hello识别。
CVSS Information
N/A
Vulnerability Type
N/A