exploitDog

GHSA-42rx-hfpw-m45p

Опубликовано: 03 авг. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

An access control issue in ZKTeco BioAccess IVS v3.3.1 allows unauthenticated attackers to arbitrarily close and open the doors managed by the platform remotely via sending a crafted web request.

An access control issue in ZKTeco BioAccess IVS v3.3.1 allows unauthenticated attackers to arbitrarily close and open the doors managed by the platform remotely via sending a crafted web request.

Ссылки

EPSS

Процентиль: 34%

0.00135

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2023-38958

CVSS3: 5.3

nvd

больше 2 лет назад

An access control issue in ZKTeco BioAccess IVS v3.3.1 allows unauthenticated attackers to arbitrarily close and open the doors managed by the platform remotely via sending a crafted web request.

EPSS

Процентиль: 34%

0.00135

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-863