Zkteco Zkteco-based Oem Devices With Firmware Zam170-nf-1.8.25-7354-ver1.0.0

5 CVEs affecting Zkteco Zkteco-based Oem Devices With Firmware Zam170-nf-1.8.25-7354-ver1.0.0. Latest disclosed: 2024-05-21. Critical: 3, High: 1.

Top CVEs affecting Zkteco Zkteco-based Oem Devices With Firmware Zam170-nf-1.8.25-7354-ver1.0.0
CVESeverityScorePublishedSummary
CVE-2023-3943Critical10.02024-05-21Stack-based Buffer Overflow vulnerability in ZkTeco-based OEM devices allows, in some cases, the execution of arbitrary code. Due to the lack of protection mec…
CVE-2023-3941Critical10.02024-05-21Relative Path Traversal vulnerability in ZkTeco-based OEM devices allows an attacker to write any file on the system with root privileges. This issue affec…
CVE-2023-3939Critical10.02024-05-21Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in ZkTeco-based OEM devices allows OS Command Inject…
CVE-2023-3940High7.52024-05-21Relative Path Traversal vulnerability in ZkTeco-based OEM devices allows an attacker to access any file on the system. This issue affects ZkTeco-based OEM…
CVE-2023-3938Medium4.62024-05-21Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ZkTeco-based OEM devices allows an attacker to authen…