Language/Region

International Argentina Bangladesh Brazil Egypt Europe Hong Kong India Indonesia Ireland-Europe Japan Kenya Korea Latin America Malaysia Mexico Middle East Nigeria Philippines Peru Saudi Arabia South Africa Thailand Turkey USA Security USA T/A Vietnam West Africa Pakistan
Login
Register

Home> Support > Security Center > Security Bulletins >Notice Regarding Security Vulnerability in ZKBio CVSecurity V5000 4.1.0_R

Notice Regarding Security Vulnerability in ZKBio CVSecurity V5000 4.1.0_R

2025-07-09

Dear Valued Customers,

 

This notice is to inform you of a security vulnerability identified in ZKBio CVSecurity V5000 Version 4.1.0_R or earlier versions. It is essential to take the necessary actions to protect your systems for your attention to this matter.

 

1. Vulnerability Details

 

Vulnerability Number: CVE-2024-6344

Scope of Impact: ZKBio CVSecurity V5000 4.1.0_R or below

Vulnerability Overview: There is a cross-site scripting (XSS) vulnerability that can be exploited remotely to launch attacks. Successful exploitation of this vulnerability may lead to the leakage of user data.

 

2. Vulnerability Solution

 

A. Enhance protection: This vulnerability has been addressed in ZKBio CVSecurity 6.1.3_R and the later versions. It is strongly recommended to update to the latest version.

B. Data backup: Before performing an upgrade, it is essential to back up relevant data to prevent data loss.

 

3. Contact Information

 

A. Please email service-af-xm@zkteco.com to obtain the patch package for the fixed version.

B. You may call the ZKTeco customer service hotline at 400-6900-999 to request the patch package for the repaired version.

C. You may also contact the ZKTeco branch in your region to obtain the patch package for the repaired version.


This website uses cookies to store information on your device, cookies can enhance your user experience and help our website work normally.
For more information, please read our Cookie Policy and Privacy Policy.

Accept