Description
de.fac2 1.34 allows bypassing the User Presence protection mechanism when there is malware on the victim's PC.
References (2)
Core 2
Core References
Product x_refsource_misc
https://github.com/BSI-Bund/de.fac2
Patch, Third Party Advisory x_refsource_misc
https://github.com/BSI-Bund/de.fac2/commit/d3c93c620850183d83ba9a0f5944d44a2ee30250
Scores
CVSS v3
5.5
EPSS
0.0021
EPSS Percentile
11.4%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Details
Status
published
Products (1)
bund/de.fac2
1.34
Published
Aug 24, 2022
Tracked Since
Feb 18, 2026