AI Score
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
ZKTeco ZKBio CVSecurity 6.1.1 is vulnerable to Directory Traversal via BaseMediaFile. An authenticated user can delete local files from the server which can lead to DoS.
github.com/mrojz/ZKT-Bio-CVSecurity/blob/main/CVE-2024-35428.md