CVE-2024-35428 Information

Description

ZKTeco ZKBio CVSecurity 6.1.1 is vulnerable to Directory Traversal via BaseMediaFile. An authenticated user can delete local files from the server which can lead to DoS.

Reference

https://github.com/mrojz/ZKT-Bio-CVSecurity/blob/main/CVE-2024-35428.md