ГлавнаяУязвимости → CVE-2024-35428
7.1высокая

CVE-2024-35428

Описание

ZKTeco ZKBio CVSecurity 6.1.1 is vulnerable to Directory Traversal via BaseMediaFile. An authenticated user can delete local files from the server which can lead to DoS.

Затрагиваемое ПО
Zkteco Zkbio cvsecurity
CVSS
Балл7.1 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
Источники
https://github.com/mrojz/ZKT-Bio-CVSecurity/blob/main/CVE-2024-35428.mdhttps://github.com/mrojz/ZKT-Bio-CVSecurity/blob/main/CVE-2024-35428.md