Awaiting Analysis
CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
Products
ZKTeco ZKBio CVSecurity
- 6.1.1
Source
cve@mitre.org
Tags
CVE-2024-35433 details
Published : May 30, 2024, 6:15 p.m.
Last Modified : May 30, 2024, 6:18 p.m.
Last Modified : May 30, 2024, 6:18 p.m.
Description
ZKTeco ZKBio CVSecurity 6.1.1 is vulnerable to Incorrect Access Control. An authenticated user, without the permissions of managing users, can create a new admin user.
CVSS Score
| 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
|---|
Weakness
| Weakness | Name | Description |
|---|
References
| URL | Source |
|---|---|
| https://github.com/mrojz/ZKT-Bio-CVSecurity/blob/main/CVE-2024-35433.md | cve@mitre.org |
This website uses the NVD API, but is not approved or certified by it.