Vulnerability: Weak Encryption and Hard-coded Password in Lenovo Fingerprint Manager Pro

Vulnerability: Weak Encryption and Hard-coded Password in Lenovo Fingerprint Manager Pro

CVE-2017-3762 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Sensitive data stored by Lenovo Fingerprint Manager Pro, version 8.01.86 and earlier, including users' Windows logon credentials and fingerprint data, is encrypted using a weak algorithm, contains a hard-coded password, and is accessible to all users with local non-administrative access to the system in which it is installed.

Learn more about our Cis Benchmark Audit For Print Devices.