{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-24T15:28:03.694","vulnerabilities":[{"cve":{"id":"CVE-2019-13604","sourceIdentifier":"cve@mitre.org","published":"2019-07-15T14:15:11.750","lastModified":"2026-06-17T02:17:03.587","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"There is a short key vulnerability in HID Global DigitalPersona (formerly Crossmatch) U.are.U 4500 Fingerprint Reader v24. The key for obfuscating the fingerprint image is vulnerable to brute-force attacks. This allows an attacker to recover the key and decrypt that image using the key. Successful exploitation causes a sensitive biometric information leak."},{"lang":"es","value":"Existe una vulnerabilidad de clave corta en U.are.U 4500 Fingerprint Reader versión 24 de HID Global DigitalPersona (anteriormente Crossmatch). La clave para ofuscar la imagen de la huella dactilar es vulnerable a ataques de fuerza bruta. Esto permite a un atacante recuperar la clave y descifrar esa imagen usando la clave. La explotación con éxito causa un filtrado de información biométrica confidencial."}],"affected":[{"source":"cve@mitre.org","affectedData":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}]}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:N/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-327"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:assaabloy:hid_digitalpersona_4500_firmware:24:*:*:*:*:*:*:*","matchCriteriaId":"3AF0D5F1-1047-4EB0-8B41-4F3400983F53"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:assaabloy:hid_digitalpersona_4500:-:*:*:*:*:*:*:*","matchCriteriaId":"403DAA80-D480-456E-8144-55EEF503FD2B"}]}]}],"references":[{"url":"https://github.com/sungjungk/fp-img-key-crack","source":"cve@mitre.org","tags":["Third Party Advisory"]},{"url":"https://www.youtube.com/watch?v=7tKJQdKRm2k","source":"cve@mitre.org","tags":["Exploit","Third Party Advisory"]},{"url":"https://www.youtube.com/watch?v=BwYK_xZlKi4","source":"cve@mitre.org","tags":["Exploit","Third Party Advisory"]},{"url":"https://github.com/sungjungk/fp-img-key-crack","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.youtube.com/watch?v=7tKJQdKRm2k","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]},{"url":"https://www.youtube.com/watch?v=BwYK_xZlKi4","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]}]}}]}