CVE-2016-2393
HIGHLenovo Fingerprint Manager < 8.01.57 and Touch Fingerprint < 1.00.08 - Privilege Escalation via Weak ACLs
Title source: llmDescription
Lenovo Fingerprint Manager before 8.01.57 and Touch Fingerprint before 1.00.08 use weak ACLs for unspecified (1) services and (2) files, which allows local users to gain privileges by invalidating local checks.
References (1)
Core 1
Core References
Patch, Vendor Advisory x_refsource_confirm
https://support.lenovo.com/us/en/product_security/len_4282
Scores
CVSS v3
7.8
EPSS
0.0004
EPSS Percentile
12.0%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-264
Status
published
Products (2)
lenovo/fingerprint_manager
< 8.01.56
lenovo/touch_fingerprint
< 1.00.07
Published
Apr 11, 2016
Tracked Since
Feb 18, 2026