CVE-2016-20029EPSS p10.6%

CVE-2016-20029CVE-2016-20029

Description

ZKTeco ZKBioSecurity 3.0 contains a file path manipulation vulnerability that allows attackers to access arbitrary files by modifying file paths used to retrieve local resources. Attackers can manipulate path parameters to bypass access controls and retrieve sensitive information including configuration files, source code, and protected application resources.

Scoring

CVSS 6.2 ()
VectorCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS0.21% probability of exploitation · percentile 10.6% · 2026-06-19T12:03:05Z
Last modified2026-06-08

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2016-20027
CVE
CVE-2016-20028
CVE
CVE-2016-20025
CVE
CVE-2016-20030
CVE
CVE-2016-20024
CVE
ZKTeco BioTime Path Traversal Vulnerability
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.