CVE-2023-2644

MEDIUM

DigitalPersona FPSensor 1.0.0.1 - Unquoted Search Path

Title source: llm
STIX 2.1

Description

A vulnerability, which was classified as problematic, has been found in DigitalPersona FPSensor 1.0.0.1. This issue affects some unknown processing of the file C:\Program Files (x86)\FPSensor\bin\DpHost.exe. The manipulation leads to unquoted search path. Attacking locally is a requirement. The identifier VDB-228773 was assigned to this vulnerability.

References (2)

Core 2
Core References
Permissions Required, Third Party Advisory vdb-entry technical-description
https://vuldb.com/?id.228773
Permissions Required, Third Party Advisory signature
https://vuldb.com/?ctiid.228773

Scores

CVSS v3 5.3
EPSS 0.0021
EPSS Percentile 10.6%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-428
Status published
Products (1)
digitalpersona_fpsensor_project/digitalpersona_fpsensor 1.0.0.1
Published May 11, 2023
Tracked Since Feb 18, 2026