Skip to content

Instantly share code, notes, and snippets.

@whiteman007
Created February 17, 2024 22:01
Show Gist options
  • Save whiteman007/b50a9b64007a5d7bcb7a8bee61d2cb47 to your computer and use it in GitHub Desktop.
Save whiteman007/b50a9b64007a5d7bcb7a8bee61d2cb47 to your computer and use it in GitHub Desktop.
CVE ID: CVE-2024-22988
Vendor of Product: ZKBioWDMS - 8.0.5 (Build: 20211216.13375)
Suggested Description: The exploit allows any attacker to download the backup database by identifying the backup name.
Severity: High
Root Cause: The vulnerability stems from inadequate access controls, enabling any attacker to exploit a flaw in the backup system's authentication mechanism and retrieve the backup database.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment