Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Zkbiosecurity_server
(Zkteco)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 2 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2020-08-14 | CVE-2020-17474 | A token-reuse vulnerability in ZKTeco FaceDepot 7B 1.0.213 and ZKBiosecurity Server 1.0.0_20190723 allows an attacker to create arbitrary new users, elevate users to administrators, delete users, and download user faces from the database. | Facedepot_7b_firmware, Zkbiosecurity_server | N/A | ||
| 2020-08-14 | CVE-2020-17473 | Lack of mutual authentication in ZKTeco FaceDepot 7B 1.0.213 and ZKBiosecurity Server 1.0.0_20190723 allows an attacker to obtain a long-lasting token by impersonating the server. | Facedepot_7b_firmware, Zkbiosecurity_server | N/A |