CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-9196

The Face authentication component in Aware mobile liveness 2.2.1 sdk 2.2.0 for Knomi allows a Biometrical Liveness authentication bypass via parameter tampering of the /knomi/analyze security_level field.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 56.9%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://cxsecurity.com/issue/WLB-2019050166
https://drive.google.com/open?id=1-0X8foCwjR3RmL_7UJcgOFYrwKOjYZQL
https://ibb.co/n7LS34g
https://cxsecurity.com/issue/WLB-2019050166
https://drive.google.com/open?id=1-0X8foCwjR3RmL_7UJcgOFYrwKOjYZQL
https://ibb.co/n7LS34g

Products affected by CVE-2019-9196

Aware » Knomi » Version: 2.2.0

cpe:2.3:a:aware:knomi:2.2.0
Aware » Knomi » Version: 2.2.1

cpe:2.3:a:aware:knomi:2.2.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-9196

Products

Pricing

Contact Us