Insecure access control in ZKTeco BioTime v8.5.5 allows unauthenticated malicious users to read sensitive backup files and access sensitive information such as user credentials via sending a crafted HTTP request to the static files resources of the system.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zkteco biotime 8.5.5 |