GCVE - cpe:2.3:a:zkteco:zkbiosecurity_server:1.0.0

Approved changes feed: RSS · Atom

cpe:2.3:a:zkteco:zkbiosecurity_server:1.0.0_20190723:*:*:*:*:*:*:*

part: a version: 1.0.0_20190723 update: *

Vendor	Zkteco (`5c4057c2-8005-57f0-8064-1e33ee4cd690`)
Product	Zkbiosecurity Server (`0b3d18da-4523-53f5-bffe-071574af6763`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2020-17474`	vulnerable	2026-06-03 14:41:54.211947	Details available A token-reuse vulnerability in ZKTeco FaceDepot 7B 1.0.213 and ZKBiosecurity Server 1.0.0_20190723 allows an attacker to create arbitrary new users, elevate users to administrators, delete users, and download user faces from the database. Published: 2020-08-14T19:22:08.000Z Updated: 2024-08-04T13:53:17.472Z Open on db.gcve.eu Reference links https://www.trendmicro.com/vinfo/us/threat-encyclopedia/vulnerability/8134/zkteco-facedepot-7b-10213-and-zkbiosecurity-server-10020190723-improper-privilege-vulnerability	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-17473`	vulnerable	2026-06-03 14:41:54.209615	Details available Lack of mutual authentication in ZKTeco FaceDepot 7B 1.0.213 and ZKBiosecurity Server 1.0.0_20190723 allows an attacker to obtain a long-lasting token by impersonating the server. Published: 2020-08-14T19:12:48.000Z Updated: 2024-08-04T13:53:17.420Z Open on db.gcve.eu Reference links https://www.trendmicro.com/vinfo/us/threat-encyclopedia/vulnerability/8131/zkteco-facedepot-7b-10213-and-zkbiosecurity-server-10020190723-long-lasting-token-vulnerability	Imported from gcve-enriched-dumps CVE data

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.