Ahmed Kameran

**Name of the Vulnerable Software and Affected Versions** NEXSYS-ONE versions prior to v.Rev.15320 **Description** The issue allows a remote attacker to obtain sensitive information via a crafted request. This is a result of a Directory Traversal vulnerability. **Recommendations** For versions prior to v.Rev.15320, upgrade to v15320 or later to fix the issue. Additionally, audit the system for unauthorized access to ensure no malicious activity has occurred.

**Name of the Vulnerable Software and Affected Versions** Zkteco BioTime versions prior to 8.5.3 Build:20200816.447 **Description** The issue allows an employee to hijack an administrator session and cookies using blind cross-site scripting. **Recommendations** For versions prior to 8.5.3 Build:20200816.447, update to version 8.5.3 Build:20200816.447 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Zkteco BioTime versions prior to 8.5.3 Build:20200816.447 **Description** The issue is related to Incorrect Access Control, allowing an authenticated administrator to exploit XSS in a pdf generator when exporting data as a PDF, potentially enabling them to read local files. This can be achieved via various features such as resign, private message, manual log, time interval, attshift, and holiday. **Recommendations** For Zkteco BioTime versions prior to 8.5.3 Build:20200816.447, update to version 8.5.3 Build:20200816.447 or later to resolve the issue. As a temporary workaround, consider restricting access to the pdf generator and limiting the ability to export data as a PDF to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Zkteco BioTime versions prior to 8.5.3 Build:20200816.447 **Description** The issue concerns Incorrect Access Control via Leave, overtime, Manual log. An authenticated employee can exploit XSS into a pdf generator when exporting data as a PDF to read local files. **Recommendations** For versions prior to 8.5.3 Build:20200816.447, update to version 8.5.3 Build:20200816.447 or later to resolve the issue. As a temporary workaround, consider restricting access to the pdf generator and the export data as a PDF feature until a patch is available. Avoid using the pdf generator for exporting sensitive data until the issue is resolved.