ZKTeco Biometric System Found Vulnerable to 24 Critical Security Flaws

An analysis of a hybrid biometric access system from Chinese manufacturer ZKTeco has uncovered two dozen security flaws that could be used by attackers to defeat authentication, steal biometric data, and even deploy malicious backdoors.
"By adding random user data to the database or using a fake QR code, a nefarious actor can easily bypass the verification process and gain unauthorized access,"

access analysis attackers authentication backdoors biometric biometric data chinese code critical data database deploy fake flaws found hybrid malicious manufacturer qr code random security security flaws steal system uncovered user data using vulnerable zkteco