CVE-2025-11772
- EPSS 0.02%
- Veröffentlicht 01.12.2025 18:55:10
- Zuletzt bearbeitet 02.12.2025 17:16:29
A carefully crafted DLL, copied to C:\ProgramData\Synaptics folder, allows a local user to execute arbitrary code with elevated privileges during driver installation.
CVE-2023-5447
- EPSS 0.07%
- Veröffentlicht 14.05.2024 14:27:17
- Zuletzt bearbeitet 21.11.2024 08:41:47
Missing lock check in SynHsaService may create a use-after-free condition which causes abnormal termination of the service, resulting in denial of service for the Synaptics Hardware Support App.
CVE-2023-6482
- EPSS 0.07%
- Veröffentlicht 27.01.2024 01:15:08
- Zuletzt bearbeitet 21.11.2024 08:43:56
Use of encryption key derived from static information in Synaptics Fingerprint Driver allows an attacker to set up a TLS session with the fingerprint sensor and send restricted commands to the fingerprint sensor. This may allow an attacker, who ha...
CVE-2021-3675
- EPSS 0.14%
- Veröffentlicht 16.06.2022 17:15:07
- Zuletzt bearbeitet 21.11.2024 06:22:08
Improper Input Validation vulnerability in synaTEE.signed.dll of Synaptics Fingerprint Driver allows a local authorized attacker to overwrite a heap tag, with potential loss of confidentiality. This issue affects: Synaptics Synaptics Fingerprint Driv...