Language/Region

International Argentina Bangladesh Brazil Egypt Europe Hong Kong India Indonesia Ireland-Europe Japan Kenya Korea Latin America Malaysia Mexico Middle East Nigeria Philippines Peru Saudi Arabia South Africa Thailand Turkey USA Security USA T/A Vietnam West Africa Pakistan
Login
Register

Home> Support > Security Center > Security Bulletins >Notice Regarding Security Vulnerability in ZKBio Access IVS 3.3.2_R

Notice Regarding Security Vulnerability in ZKBio Access IVS 3.3.2_R

2025-08-22

Dear Valued Customers,

 

This notice is to inform you of a security vulnerability identified in ZKBio Access IVS 3.3.2_R or earlier versions. It is essential to take the necessary actions to protect your systems for your attention to this matter.

 

  • Vulnerability Details

 

Vulnerability Number: CVE-2024-1706

Scope of Impact: ZKBio Access IVS 3.3.2_R and earlier versions

Vulnerability Overview: A cross-site scripting attack vulnerability exists, successful exploitation of which could lead to remote arbitrary code execution.

 

  • Vulnerability Solution

 

A. ZKBio Access IVS is no longer maintained and the product has been replaced by ZKBio CVAccess, it is recommended to replace it with the latest version of ZKBio CVAccess.

 

  • Contact Information

 

A. Please contact service-af-xm@zkteco.com to obtain the patch package for the fixed version.

B. You may call the ZKTeco customer service hotline at 400-6900-999 to request the patch package for the repaired version.

C. You may also contact the ZKTeco branch in your region to obtain the patch package for the repaired version.


This website uses cookies to store information on your device, cookies can enhance your user experience and help our website work normally.
For more information, please read our Cookie Policy and Privacy Policy.

Accept