Security Advisory

CVE-2022-38802

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-11-30 00:00:00

Last updated 2025-04-24 19:49:01

Assigner mitre

State PUBLISHED

Description

Zkteco BioTime < 8.5.3 Build:20200816.447 is vulnerable to Incorrect Access Control via resign, private message, manual log, time interval, attshift, and holiday. An authenticated administrator can read local files by exploiting XSS into a pdf generator when exporting data as a PDF

← Browse all CVEs View on cve.org ↗