CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-38958

An access control issue in ZKTeco BioAccess IVS v3.3.1 allows unauthenticated attackers to arbitrarily close and open the doors managed by the platform remotely via sending a crafted web request.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 34.6%

CVSS Severity

CVSS v3 Score 5.3

References

http://zkteco.com
https://claroty.com/team82/disclosure-dashboard/cve-2023-38958
http://zkteco.com
https://claroty.com/team82/disclosure-dashboard/cve-2023-38958

Products affected by CVE-2023-38958

Zkteco » Bioaccess Ivs » Version: 3.3.1

cpe:2.3:a:zkteco:bioaccess_ivs:3.3.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-38958

Products

Pricing

Contact Us