Sagem Compact Biometric Module Driver Patched -

: In mid-2021, security researchers from Positive Technologies —specifically Natalia Tlyapova, Sergey Fedonin, Vladimir Kononovich, and Vyacheslav Moskvin—uncovered a critical set of vulnerabilities. The most severe of these was CVE-2021-35522 , a Buffer Overflow vulnerability in the Thrift command handlers of IDEMIA's biometric devices. This flaw earned a CVSS v3 score of 9.8 (Critical) because it allowed a remote, unauthenticated attacker to execute arbitrary code on the targeted device, bypass biometric identification, and even deactivate access control systems entirely. The underlying issue was a lack of a proper length check on input received from a Thrift protocol network packet, leading to the out-of-bounds write.

Run a network scan using IDEMIA’s tool (or an RMM script) to list all connected Sagem CBM devices and their current driver versions.

Sagem Compact Biometric Module Driver Patched: Crucial Security Update for Enterprise Authentication

Executive Summary The Sagem Compact Biometric Module (also associated with MorphoSmart devices) has received updated driver support to maintain compatibility with modern operating systems, specifically Windows 10 and 11. While the core hardware was developed by Sagem DS (now part of IDEMIA), newer driver packages have been released to resolve installation and stability issues on 64-bit systems. 1. Device Specifications Manufacturer: Sagem DS (now IDEMIA/Morpho). Device ID: USB\VID_079B&PID_0052 . Module Type: USB Biometric Fingerprint Scanner. sagem compact biometric module driver patched

For system administrators, this patch extends the lifecycle of existing hardware assets, saving thousands of dollars in premature hardware replacement costs. It allows organizations to maintain strict regulatory compliance—such as GDPR, PCI-DSS, and HIPAA—which mandate that all authentication hardware run supported, patched software components.

Use the Sagem Biometric Module Downloads for universal Windows 10/11 installers. SAGEM BIOMETRIC MODULE Drivers Download

: Managing physical entry into high-security data centers. The underlying issue was a lack of a

Before applying a patched or updated driver, you must remove existing, potentially corrupt installations. Connect the device to your PC. Device Manager by right-clicking the Start menu. Biometric devices Universal Serial Bus controllers , find the MorphoSmart entry, right-click, and select Uninstall device Control Panel > Programs and Features

: Alongside the critical CVE-2021-35522, researchers also identified two other significant flaws:

: Reconfigures memory allocation to prevent malicious inputs from executing arbitrary code via the USB interface. While the core hardware was developed by Sagem

The vendor (IDEMIA) has released patches to address this issue. Organizations must upgrade to the following specific firmware versions to be considered safe:

Today, we are releasing a patched driver package that revives this hardware for modern architectures.