Zkbio Access Ivs
Approved changes feed: RSS · Atom
cpe:2.3:a:zkteco:zkbio_access_ivs:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Zkteco (5c4057c2-8005-57f0-8064-1e33ee4cd690) |
|---|---|
| Product | Zkbio Access Ivs (f0343e9a-39e9-5792-9ab6-9ab2b3dfb042) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-1706 |
vulnerable | 2026-06-03 14:54:34.341921 |
ZKTeco ZKBio Access IVS Department Name Search Bar cross site scripting
LOW (3.5)
A vulnerability was determined in ZKTeco ZKBio Access IVS up to 3.3.2. This impacts an unknown function of the component Department Name Search Bar. This manipulation with the input <marquee>hi causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized. The vendor explains: "ZKBio Access IVS is no longer maintained and the product has been replaced by ZKBio CVAccess, it is recommended to replace it with the latest version of ZKBio CVAccess." This vulnerability only affects products that are no longer supported by the maintainer.
Published: 2024-02-21T18:00:07.522Z
Updated: 2025-08-22T07:29:38.911Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.