Vulnerability Details CVE-2023-4587
An IDOR vulnerability has been found in ZKTeco ZEM800 product affecting version 6.60. This vulnerability allows a local attacker to obtain registered user backup files or device configuration files over a local network or through a VPN server.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 0.4%
CVSS Severity
CVSS v3 Score 8.3
References
Products affected by CVE-2023-4587
-
cpe:2.3:h:zkteco:zem800:-
-
cpe:2.3:o:zkteco:zem800_firmware:6.60