CVE-2015-3321

Published: Oct 3, 2017Modified: May 13, 2026

6.7

Vector

CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Exploitability: 0.8 / Impact: 5.9

Source: NVD

Description

Services and files in Lenovo Fingerprint Manager before 8.01.42 have incorrect ACLs, which allows local users to invalidate local checks and gain privileges via standard filesystem operations.

Affected (1)

Products: Lenovo: Fingerprint Manager

Lenovo

1 product

Fingerprint Manager

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Lenovo Fingerprint Manager	Up to 8.01.41

Related CWEs

CWE-264

References (2)

https://support.lenovo.com/us/en/product_security/lenovo_fpr

Source: cve@mitre.org

Issue TrackingMitigationVendor Advisory

https://support.lenovo.com/us/en/product_security/lenovo_fpr

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingMitigationVendor Advisory

Timeline

No history available yet.