| ID | CVE-2022-38801 | ||||||
| Sažetak | In Zkteco BioTime < 8.5.3 Build:20200816.447, an employee can hijack an administrator session and cookies using blind cross-site scripting. | ||||||
| Reference | |||||||
| CVSS |
|
||||||
| Pristup |
|
||||||
| Impact |
|
||||||
| CVSS vektor | CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N | ||||||
| Zadnje važnije ažuriranje | 02-12-2022 - 15:12 | ||||||
| Objavljeno | 30-11-2022 - 14:15 |
