Описание
Windows Hello Security Feature Bypass Vulnerability
Weak authentication in Windows Hello allows an authorized attacker to bypass a security feature over a network.
FAQ
What kind of security feature could be bypassed by successfully exploiting this vulnerability?
An attacker who successfully exploited this vulnerability could bypass the Windows Hello security feature.
Where can I find more information about Windows Hello?
Please see Windows Hello | Microsoft Learn for more details.
Обновления
| Продукт | Статья | Обновление |
|---|---|---|
| Windows 10 Version 1809 for 32-bit Systems | ||
| Windows 10 Version 1809 for x64-based Systems | ||
| Windows Server 2019 | ||
| Windows Server 2019 (Server Core installation) | ||
| Windows Server 2022 | ||
| Windows Server 2022 (Server Core installation) | ||
| Windows 10 Version 21H2 for 32-bit Systems | ||
| Windows 10 Version 21H2 for ARM64-based Systems | ||
| Windows 10 Version 21H2 for x64-based Systems | ||
| Windows 11 Version 22H2 for ARM64-based Systems |
Показывать по
Возможность эксплуатации
Publicly Disclosed
Exploited
Latest Software Release
DOS
EPSS
6.5 Medium
CVSS3
Связанные уязвимости
Weak authentication in Windows Hello allows an authorized attacker to bypass a security feature over a network.
Weak authentication in Windows Hello allows an authorized attacker to bypass a security feature over a network.
Уязвимость функции биометрической проверки подлинности Windows Hello операционных систем Windows, позволяющая нарушителю обойти существующие ограничения безопасности
EPSS
6.5 Medium
CVSS3