GCVE - cpe:2.3:o:zkteco:facedepot_7b_firmware:1.0.213:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:zkteco:facedepot_7b_firmware:1.0.213:*:*:*:*:*:*:*

part: o version: 1.0.213 update: *

Vendor	Zkteco (`5c4057c2-8005-57f0-8064-1e33ee4cd690`)
Product	Facedepot 7B Firmware (`ca83e66f-1683-536d-ba04-6635d45f7465`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2020-17474`	vulnerable	2026-06-03 14:41:54.211978	Details available A token-reuse vulnerability in ZKTeco FaceDepot 7B 1.0.213 and ZKBiosecurity Server 1.0.0_20190723 allows an attacker to create arbitrary new users, elevate users to administrators, delete users, and download user faces from the database. Published: 2020-08-14T19:22:08.000Z Updated: 2024-08-04T13:53:17.472Z Open on db.gcve.eu Reference links https://www.trendmicro.com/vinfo/us/threat-encyclopedia/vulnerability/8134/zkteco-facedepot-7b-10213-and-zkbiosecurity-server-10020190723-improper-privilege-vulnerability	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-17473`	vulnerable	2026-06-03 14:41:54.210461	Details available Lack of mutual authentication in ZKTeco FaceDepot 7B 1.0.213 and ZKBiosecurity Server 1.0.0_20190723 allows an attacker to obtain a long-lasting token by impersonating the server. Published: 2020-08-14T19:12:48.000Z Updated: 2024-08-04T13:53:17.420Z Open on db.gcve.eu Reference links https://www.trendmicro.com/vinfo/us/threat-encyclopedia/vulnerability/8131/zkteco-facedepot-7b-10213-and-zkbiosecurity-server-10020190723-long-lasting-token-vulnerability	Imported from gcve-enriched-dumps CVE data

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.