\nThis issue affects \nZkTeco-based OEM devices (ZkTeco ProFace X, Smartec ST-FR043, Smartec ST-FR041ME and possibly others)\n\n with firmware \nZAM170-NF-1.8.25-7354-Ver1.0.0 and possibly others.\n\n\n\n
"}],"value":"Stack-based Buffer Overflow vulnerability in ZkTeco-based OEM devices allows, in some cases, the execution of arbitrary code. Due to the lack of protection mechanisms such as stack canaries and PIE, it is possible to successfully execute code even under restrictive conditions.\n\nThis issue affects \nZkTeco-based OEM devices (ZkTeco ProFace X, Smartec ST-FR043, Smartec ST-FR041ME and possibly others)\n\n with firmware \nZAM170-NF-1.8.25-7354-Ver1.0.0 and possibly others."}],"impacts":[{"capecId":"CAPEC-100","descriptions":[{"lang":"en","value":"CAPEC-100: Overflow Buffers"}]}],"metrics":[{"cvssV3_1":{"attackComplexity":"LOW","attackVector":"NETWORK","availabilityImpact":"HIGH","baseScore":10,"baseSeverity":"CRITICAL","confidentialityImpact":"HIGH","integrityImpact":"HIGH","privilegesRequired":"NONE","scope":"CHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H","version":"3.1"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]}],"problemTypes":[{"descriptions":[{"cweId":"CWE-121","description":"CWE-121: Stack-based Buffer Overflow","lang":"en","type":"CWE"}]}],"providerMetadata":{"orgId":"e45d732a-8f6b-4b6b-be76-7420f6a2b988","shortName":"Kaspersky","dateUpdated":"2024-05-21T13:32:47.870Z"},"references":[{"url":"https://github.com/klsecservices/Advisories/blob/master/K-ZkTeco-2023-006.md"}],"source":{"discovery":"UNKNOWN"},"timeline":[{"lang":"en","time":"2023-05-01T21:00:00.000Z","value":"Vulnerability discovered."},{"lang":"en","time":"2023-09-19T14:00:00.000Z","value":"Initial request to PSIRT@zkteco.com."},{"lang":"en","time":"2023-10-03T13:18:00.000Z","value":"Follow-up with PSIRT@zkteco.com due to no initial response."},{"lang":"en","time":"2023-12-20T10:46:00.000Z","value":"Vulnerability reported to PSIRT@zkteco.com in plaintext."},{"lang":"en","time":"2024-05-21T13:32:00.000Z","value":"No response from vendor; CVE details added to CVE.org."}],"title":"Multiple buffer overflow in ZkTeco-based OEM devices","x_generator":{"engine":"Vulnogram 0.2.0"}},"adp":[{"title":"CISA ADP Vulnrichment","metrics":[{"other":{"type":"ssvc","content":{"id":"CVE-2023-3943","role":"CISA Coordinator","options":[{"Exploitation":"none"},{"Automatable":"yes"},{"Technical Impact":"total"}],"version":"2.0.3","timestamp":"2024-05-21T15:03:22.339568Z"}}}],"affected":[{"cpes":["cpe:2.3:h:zkteco:facedepot_7b:-:*:*:*:*:*:*:*"],"vendor":"zkteco","product":"facedepot_7b","versions":[{"status":"affected","version":"0","versionType":"custom","lessThanOrEqual":"ZAM170-NF-1.8.25-7354-Ver1.0.0"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:h:zkteco:smartec_st_fr041me:*:*:*:*:*:*:*:*"],"vendor":"zkteco","product":"smartec_st_fr041me","versions":[{"status":"affected","version":"0","versionType":"custom","lessThanOrEqual":"ZAM170-NF-1.8.25-7354-Ver1.0.0"}],"defaultStatus":"unknown"},{"cpes":["cpe:2.3:h:zkteco:smartec_st_fr043:*:*:*:*:*:*:*:*"],"vendor":"zkteco","product":"smartec_st_fr043","versions":[{"status":"affected","version":"0","versionType":"custom","lessThanOrEqual":"ZAM170-NF-1.8.25-7354-Ver1.0.0"}],"defaultStatus":"unknown"}],"providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2024-06-04T17:17:30.843Z"}},{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-02T07:08:50.662Z"},"title":"CVE Program Container","references":[{"url":"https://github.com/klsecservices/Advisories/blob/master/K-ZkTeco-2023-006.md","tags":["x_transferred"]}]}]}}