Unrated severityNVD Advisory· Published Sep 29, 2022· Updated May 20, 2025
CVE-2022-40472
CVE-2022-40472
Description
ZKTeco Xiamen Information Technology ZKBio Time 8.0.7 Build: 20220721.14829 was discovered to contain a CSV injection vulnerability. This vulnerability allows attackers to execute arbitrary code via a crafted payload injected into the Content text field of the Add New Message module.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- ZKTeco Xiamen Information Technology/ZKBio Timedescription
- Range: = 8.0.7 Build: 20220721.14829
Patches
Vulnerability mechanics
References
1- the-it-wonders.blogspot.com/2022/09/zkbio-time-csv-injection.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.