HardOCP News
[H] News
- Joined
- Dec 31, 1969
- Messages
- 0
I want to say that this is shocking, but haven't hackers been bypassing these things for years in the movies?
Fingerprint access controllers made by Chiyu Technology can be managed and configured through a built-in HTTP web server. The problem, according to researcher Maxim Rupp, is that the web server is plagued by a vulnerability that allows an attacker with network access to view and modify the device’s configuration without authentication by directly accessing known paths (CVE-2015-2871).
Fingerprint access controllers made by Chiyu Technology can be managed and configured through a built-in HTTP web server. The problem, according to researcher Maxim Rupp, is that the web server is plagued by a vulnerability that allows an attacker with network access to view and modify the device’s configuration without authentication by directly accessing known paths (CVE-2015-2871).