CVE-2023-38958 Information

Description

An access control issue in ZKTeco BioAccess IVS v3.3.1 allows unauthenticated attackers to arbitrarily close and open the doors managed by the platform remotely via sending a crafted web request.

Reference

https://claroty.com/team82/disclosure-dashboard/cve-2023-38958 http://zkteco.com