Security Advisory

CVE-2016-3917

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2016-10-10 10:00:00

Last updated 2024-08-06 00:10:31

Assigner google_android

State PUBLISHED

Description

The fingerprint login feature in Android 6.0.1 before 2016-10-01 and 7.0 before 2016-10-01 does not track the user account during the authentication process, which allows physically proximate attackers to authenticate as an arbitrary user by leveraging lockscreen access, aka internal bug 30744668.

← Browse all CVEs View on cve.org ↗