Lucene search
K

5 matches found

BDU FSTEC
BDU FSTEC
added 2024/07/04 12:0 a.m.4 views

The vulnerability of microprogrammed biometric terminal software for ZkTeco ProFace X, Smartec ST-FR043, and Smartec ST-FR041ME lies in errors in processing the relative path to the catalog. This allows intruders to circumvent security restrictions and gain unauthorized access to protected information.

The vulnerability of microprogrammed software in biometric terminals ZkTeco ProFace X, Smartec ST-FR043, and Smartec ST-FR041ME is related to errors in processing the relative path to the catalog. Exploiting this vulnerability can allow an attacker, operating remotely, to circumvent security...

7.8CVSS5.8AI score0.00775EPSS
Exploits0References6
Cvelist
Cvelist
added 2024/05/21 10:20 a.m.24 views

CVE-2023-3941 Multiple arbitrary file writes in ZkTeco-based OEM devices

Relative Path Traversal vulnerability in ZkTeco-based OEM devices allows an attacker to write any file on the system with root privileges. This issue affects ZkTeco-based OEM devices ZkTeco ProFace X, Smartec ST-FR043, Smartec ST-FR041ME and possibly others with the ZAM170-NF-1.8.25-7354-Ver1.0.0...

10CVSS9.7AI score0.00917EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/05/21 12:0 a.m.3 views

ZkTeco OEM 安全漏洞

ZkTeco OEM is an intelligent system from the Chinese company ZkTeco. A security vulnerability exists in ZkTeco OEM that stems from incorrect neutralization of special elements used in operating system commands. The following products and versions are affected: ZkTeco ProFace X, Smartec ST-FR043,...

10CVSS6.8AI score0.01324EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/05/21 12:0 a.m.4 views

PT-2024-4481 · Smartec +1 · Smartec St-Fr041Me +2

Name of the Vulnerable Software and Affected Versions: ZkTeco ProFace X versions ZAM170-NF-1.8.25-7354-Ver1.0.0 and possibly others Smartec ST-FR043 versions ZAM170-NF-1.8.25-7354-Ver1.0.0 and possibly others Smartec ST-FR041ME versions ZAM170-NF-1.8.25-7354-Ver1.0.0 and possibly others...

7.8CVSS7.2AI score0.00775EPSS
Exploits0References11
CNNVD
CNNVD
added 2024/05/21 12:0 a.m.4 views

ZkTeco OEM SQL注入漏洞

ZkTeco OEM is an intelligent system from the Chinese company ZkTeco. ZkTeco OEM suffers from a SQL injection vulnerability that arises from an improper neutralization of special elements used in SQL commands, allowing an attacker to impersonate another user or perform unauthorized actions. The...

7.5CVSS7.8AI score0.00581EPSS
Exploits0References2
Rows per page
Query Builder