Bioaccess Ivs Security Vulnerabilities and Issues — Bioaccess Ivs CVE List

Lucene search

ZktecoBioaccess Ivs

4 matches found

CVE•added 2023/08/03 2:15 a.m.•50 views

CVE-2023-38954

ZKTeco BioAccess IVS v3.3.1 was discovered to contain a SQL injection vulnerability.

9.8CVSS9.8AI score0.00066EPSS

CVE•added 2023/08/03 2:15 a.m.•48 views

CVE-2023-38956

A path traversal vulnerability in ZKTeco BioAccess IVS v3.3.1 allows unauthenticated attackers to read arbitrary files via supplying a crafted payload.

7.5CVSS7.4AI score0.00361EPSS

CVE•added 2023/08/03 2:15 a.m.•45 views

CVE-2023-38955

ZKTeco BioAccess IVS v3.3.1 allows unauthenticated attackers to obtain sensitive information about all managed devices, including their IP addresses and device names.

7.5CVSS7.3AI score0.00119EPSS

CVE•added 2023/08/03 2:15 a.m.•39 views

CVE-2023-38958

An access control issue in ZKTeco BioAccess IVS v3.3.1 allows unauthenticated attackers to arbitrarily close and open the doors managed by the platform remotely via sending a crafted web request.

5.3CVSS5.3AI score0.00135EPSS