Description
An undocumented configuration export port is accessible on some models
of ZKTeco CCTV cameras. This port does not require authentication and
exposes critical information about the camera such as open services and
camera account credentials.
Published: 2026-05-20
Score: 9.1 Critical
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

An undocumented export port is available on certain ZKTeco CCTV camera models that can be accessed without any authentication. The port reveals sensitive data such as open services and the camera’s account credentials, thereby allowing an attacker to compromise the confidentiality of the device and potentially gain control of the camera. The weakness is an improper authentication flaw (CWE‑288).

Affected Systems

The vulnerability affects ZKTeco SSC335‑GC2063‑Face‑0b77 Solution Cameras. Firmware versions prior to V5.0.1.2.20260421 are vulnerable; the vendor has released a patch in that firmware release. No other affected versions are documented.

Risk and Exploitability

The CVSS score of 9.1 classifies this issue as critical, indicating a high likelihood that an attacker could exploit the unauthenticated port. The EPSS score is not available, but the lack of required authentication makes exploitation straightforward from any network that can reach the camera. The vulnerability is not yet listed in the CISA KEV catalog, so no known exploits have been publicly identified yet, but the simple access path suggests a high potential for misuse.

Generated by OpenCVE AI on May 20, 2026 at 16:20 UTC.

Remediation

Vendor Solution

ZKTeco has patched this vulnerability in firmware version V5.0.1.2.20260421. ZKTeco recommends that users upgrade to firmware version V5.0.1.2.20260421 or later at their earliest opportunity.

OpenCVE Recommended Actions

  • Upgrade the camera firmware to V5.0.1.2.20260421 or later as distributed by ZKTeco.
  • Block or filter traffic to the undocumented export port using firewall rules or network segmentation to prevent external or unauthorized internal access.
  • Restrict management interface access to trusted network segments and require authentication whenever possible.

Generated by OpenCVE AI on May 20, 2026 at 16:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 20 May 2026 16:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 20 May 2026 15:30:00 +0000

Type Values Removed Values Added
Description An undocumented configuration export port is accessible on some models of ZKTeco CCTV cameras. This port does not require authentication and exposes critical information about the camera such as open services and camera account credentials.
Title Unauthenticated Export Service in ZKTeco CCTV Cameras
Weaknesses CWE-288
References
Metrics cvssV3_1

{'score': 9.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N'}

cvssV4_0

{'score': 9.1, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: icscert

Published:

Updated: 2026-05-20T15:27:49.460Z

Reserved: 2026-05-14T14:10:56.160Z

Link: CVE-2026-8598

cve-icon Vulnrichment

Updated: 2026-05-20T15:27:45.714Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-20T16:16:27.707

Modified: 2026-05-20T17:30:40.450

Link: CVE-2026-8598

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-20T16:30:14Z

Weaknesses