6.5 Medium
AI Score
Confidence
High
0 Low
EPSS
Percentile
0.0%
ZKTeco ZKBio CVSecurity 6.1.1 is vulnerable to Cross Site Scripting (XSS) via an Audio File. An authenticated user can injection malicious JavaScript code to trigger a Cross Site Scripting.
github.com/mrojz/ZKT-Bio-CVSecurity/blob/main/CVE-2024-35432.md