Published: 2018/10/24  Last Updated: 2018/10/24

Information from Feitian Japan Co., Ltd.

Vulnerability ID:JVN#21528670
Title:SecureCore Standard Edition vulnerable to authentication bypass

This is a statement from the vendor itself with no modification by JPCERT/CC.

SecureCoer Standard Edition Version 2.x confirmed vulnerability of invalid authentication.

<Affect of System>
SecureCore Standard Edition Version 2.x
This vulnerability only affects use of the product under Windows 8/8.1 environment.

It is possible that an attacker avoids the product's authentication and logs in to the Windows PC.

A fix for this vulnerability was provided in SecureCore Standard Edition Verison 3.0.
We recommend you to upgrade to Version 3.0 or later or latest version.
Users who use SecureCore Standard Edition Version 2.x under Windows 8 / 8.1
If upgrading is difficult, please apply the patch for this fix.

How to get upgrade software or the patch
Please contact our web page.