Today's Hard|Forum Post
Today's Hard|Forum Post

Wednesday August 05, 2015

Fingerprint Access Device Flaw Could Make It Easy to Open Doors

I want to say that this is shocking, but haven't hackers been bypassing these things for years in the movies? wink

Fingerprint access controllers made by Chiyu Technology can be managed and configured through a built-in HTTP web server. The problem, according to researcher Maxim Rupp, is that the web server is plagued by a vulnerability that allows an attacker with network access to view and modify the device’s configuration without authentication by directly accessing known paths (CVE-2015-2871).