Medium severity6.1NVD Advisory· Published May 30, 2024· Updated Jun 17, 2026
CVE-2024-35432
CVE-2024-35432
Description
ZKTeco ZKBio CVSecurity 6.1.1 is vulnerable to Cross Site Scripting (XSS) via an Audio File. An authenticated user can injection malicious JavaScript code to trigger a Cross Site Scripting.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- ZKTeco/ZKBio CVSecuritydescription
- Range: =6.1.1
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.