3 matches found
Authentication flaw
Chiyu BF-630 and BF-630W fingerprint access-control devices allow remote attackers to bypass authentication and 1 read or 2 modify a Voice Time Set configuration settings via a request to voice.htm or b UniFinger configuration settings via a request to bf.htm, a different vulnerability than...
CVE-2015-2871
CVE-2015-2871 affects Chiyu BF-660C fingerprint access-control devices (and related BF-630/BF-630W family in CNVD/CNVD entries). The available documents state a remote attacker can bypass authentication and read or modify communication configuration settings by sending a crafted request to net.ht...
Chiyu Technology fingerprint access control contains multiple vulnerabilities
Overview Multiple models of Chiyu Technology fingerprint access control devices contain a cross-site scripting XSS vulnerability and an authentication bypass vulnerability. Description CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS- CVE-2015-2870According to t...