CVE-2016-20031 | ZKTeco ZKBioSecurity 3.0.1.0_R_230 visLogin.jsp getClientIp hard-coded credentials (ZSL-2016-5367)

A vulnerability described as critical has been identified in ZKTeco ZKBioSecurity 3.0.1.0_R_230. Affected by this issue is the function getClientIp of the file visLogin.jsp. The manipulation results in hard-coded credentials.

This vulnerability is reported as CVE-2016-20031. The attack requires a local approach. No exploit exists.VulDB Recent EntriesRead More