Vulnerabilities > CVE-2023-38955 - Exposure of Resource to Wrong Sphere vulnerability in Zkteco Bioaccess IVS 3.3.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
ZKTeco BioAccess IVS v3.3.1 allows unauthenticated attackers to obtain sensitive information about all managed devices, including their IP addresses and device names.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |