CVE-2023-38951
Last modified
CVE-2023-38951 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. ZKTeco BioTime 8.5.5 through 9.x before 9.0.1 (20240617.19506) allows authenticated attackers to create or overwrite arbitrary files on the server via crafted requests to /base/sftpsetting/ endpoints that abuse a path traversal issue in the Username field and a lack of input sanitization on the SSH Key field. Overwriting specific files may lead to arbitrary code execution as NT AUTHORITY\SYSTEM.. EPSS estimates a 3.20% chance of exploitation in the next 30 days.
Description
ZKTeco BioTime 8.5.5 through 9.x before 9.0.1 (20240617.19506) allows authenticated attackers to create or overwrite arbitrary files on the server via crafted requests to /base/sftpsetting/ endpoints that abuse a path traversal issue in the Username field and a lack of input sanitization on the SSH Key field. Overwriting specific files may lead to arbitrary code execution as NT AUTHORITY\SYSTEM.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Zkteco | Biotime | 8.5.5 |
References
- https://claroty.com/team82/disclosure-dashboard/cve-2023-38951Third Party Advisory
- http://zkteco.comProduct
- https://claroty.com/team82/disclosure-dashboard/cve-2023-38951Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2023-38951?
How severe is CVE-2023-38951?
How do I fix CVE-2023-38951?
Are you affected by CVE-2023-38951?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST