Vulnerability in Zkteco Co Wl20 Biometric Attendance System

CVE-2025-54464

This vulnerability exists in ZKTeco WL20 due to storage of admin and user credentials without encryption in the device firmware. An attacker with physical access could exploit this vulnerability by extracting the firmware and reverse engin…

EPSS: 0.001 (0.3th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References