CVE-2020-17474

Published: 2020-08-14T20:15Z

Last Modified: 2024-11-21T05:08Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

A token-reuse vulnerability in ZKTeco FaceDepot 7B 1.0.213 and ZKBiosecurity Server 1.0.0_20190723 allows an attacker to create arbitrary new users, elevate users to administrators, delete users, and download user faces from the database. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt