CVE-2025-54465
CVE-2025-54465 affects ZKTeco WL20. The vulnerability arises from hard-coded MQTT credentials and endpoints stored in plaintext in the device firmware. An attacker with physical access can extract the firmware and read the hard-coded credentials/endpoints from the binary, gaining unauthorized acc...