CVE-2023-38950

⚠ KEVEPSS 83.4%

ZKTeco BioTime Path Traversal Vulnerability

Added to CISA KEV: 5/19/2025

Description

ZKTeco BioTime contains a path traversal vulnerability in the iclock API that allows an unauthenticated attacker to read arbitrary files via supplying a crafted payload.

Affected packages (0)

No package mapping in OSV.