{"vulnerability": "CVE-2022-42953", "sightings": [{"uuid": "b9e486fb-b3b9-412e-826d-6879783cabb3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-42953", "type": "seen", "source": "https://t.me/cibsecurity/55297", "content": "\u203c CVE-2022-42953 \u203c\n\nCertain ZKTeco products (ZEM500-510-560-760, ZEM600-800, ZEM720, ZMM) allow access to sensitive information via direct requests for the form/DataApp?style=1 and form/DataApp?style=0 URLs. The affected versions may be before 8.88 (ZEM500-510-560-760, ZEM600-800, ZEM720) and 15.00 (ZMM200-220-210). The fixed versions are firmware version 8.88 (ZEM500-510-560-760, ZEM600-800, ZEM720) and firmware version 15.00 (ZMM200-220-210).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-25T07:39:50.000000Z"}, {"uuid": "0d4269d9-478e-4f54-bfc8-d80794841317", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-42953", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/6b381bc5-f3a1-4937-ba54-30d7abec7b71", "content": "", "creation_timestamp": "2026-06-23T14:06:14.415312Z"}]}