2 matches found
CVE-2022-30515
ZKTeco BioTime 8.5.4 is missing authentication on folders containing employee photos, allowing an attacker to view them through filename enumeration...
CVE-2022-30515
ZKTeco BioTime 8.5.4 is affected by an authentication bypass issue where folders containing employee photos are not required to authenticate, enabling an attacker to view photos via filename enumeration. This vulnerability is corroborated by multiple sources in the connected set (including NVD an...