Skip to main content

Zem800 Firmware

2 CVEs product

Monthly

CVE-2023-4587 MEDIUM This Month

An IDOR vulnerability has been found in ZKTeco ZEM800 product affecting version 6.60. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Zem800 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2022-42953 HIGH POC This Week

Certain ZKTeco products (ZEM500-510-560-760, ZEM600-800, ZEM720, ZMM) allow access to sensitive information via direct requests for the form/DataApp?style=1 and form/DataApp?style=0 URLs. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Zmm200 Firmware Zmm210 Firmware Zmm220 Firmware Zem720 Firmware +6
NVD Exploit-DB
CVSS 3.1
7.5
EPSS
4.8%
EPSS 0% CVSS 5.5
MEDIUM This Month

An IDOR vulnerability has been found in ZKTeco ZEM800 product affecting version 6.60. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Zem800 Firmware
NVD
EPSS 5% CVSS 7.5
HIGH POC This Week

Certain ZKTeco products (ZEM500-510-560-760, ZEM600-800, ZEM720, ZMM) allow access to sensitive information via direct requests for the form/DataApp?style=1 and form/DataApp?style=0 URLs. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Zmm200 Firmware Zmm210 Firmware +8
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy