CVE-2021-3446616.07.2021, 21:15Windows Hello Security Feature Bypass VulnerabilityEnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTNIST5.7 MEDIUMPHYSICALHIGHNONECVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:NmicrosoftCNA5.7 MEDIUMCVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:CCVEADP------Awaiting analysisThis vulnerability is currently awaiting analysis.Base ScoreCVSS 3.xEPSS ScorePercentile: 41%Common Weakness EnumerationCWE-290 - Authentication Bypass by SpoofingThis attack-focused weakness is caused by improperly implemented authentication schemes that are subject to spoofing attacks.Referenceshttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34466https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34466