Lenovo discloses security vulnerability in ThinkPad fingerprint manager

If you’re using an older ThinkPad with a fingerprint sensor, you’ll want to update it pronto. Lenovo has disclosed a high-severity security vulnerability with its Fingerprint Manager Pro software for ThinkPad, ThinkCentre, and ThinkStation systems (via Engadget).

According to Lenovo, the software uses weak encryption and a hardcoded password, allowing for attackers to more easily gain access to a PC and view login credentials and fingerprint data. The vulnerability affects the following PCs, according to Lenovo:

Lenovo Fingerprint Manager Pro was only used for Windows 7, 8, and 8.1 systems, so there’s no need to worry if you’re using a Windows 10 PC with Windows Hello authentication. Further, the vulnerability also required local access to the computer, Lenovo says. If you are impacted, the vulnerability has been patched in Fingerprint Manager Pro version 8.01.87, available directly from Lenovo.

Thank you very much for your visit on this webpage Lenovo discloses security vulnerability in ThinkPad fingerprint manager.

Post source: