CVE-2023-38950
CVE-2023-38950
In short
An unauthenticated attacker can read any file on a ZKTeco BioTime server by sending a specially crafted request to the iclock API. This allows access to sensitive data like configuration files and credentials without needing to log in.
Technical detail
Path traversal vulnerability in ZKTeco BioTime v8.5.5 iclock API allows unauthenticated remote attackers to read arbitrary files via malformed path parameters. The vulnerability exploits insufficient input validation on file path handling, enabling directory traversal sequences to bypass access controls and retrieve sensitive system files.
Summary generated and translated by AI from the official description.
A path traversal vulnerability in the iclock API of ZKTeco BioTime v8.5.5 allows unauthenticated attackers to read arbitrary files via supplying a crafted payload. This vulnerability was fixed in version 9.0.120240617.19506 of ZKBioTime.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected products
n/a · n/apublic PoCs found — 1
cve_referencesploitus.com/exploit?id=PACKETSTORM:177859unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://claroty.com/team82/disclosure-dashboard/cve-2023-38950https://sploitus.com/exploit?id=PACKETSTORM:177859https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-38950https://www.fortinet.com/content/dam/fortinet/assets/reports/report-incident-response-middle-east.pdfhttp://zkteco.com