CVE-2025-45746 – ZKT ZKBio CVSecurity Hardcoded JWT Secret Authentication Bypass

May 13, 2025

CVE ID : CVE-2025-45746

Published : May 13, 2025, 7:15 p.m. | 1 hour, 32 minutes ago

Description : In ZKT ZKBio CVSecurity 6.4.1_R an unauthenticated attacker can craft JWT token using the hardcoded secret to authenticate to the service console.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-45861 – TOTOLINK A3002R Buffer Overflow Vulnerability

Next Article CVE-2025-3744 – Nomad Sentinel Policy Bypass

How AI further empowers value stream management

12 Top ReactJS Development Companies in 2025

Not sure where to go with AI? Here’s your roadmap.

This week in AI dev tools: A2A donated to Linux Foundation, OpenAI adds Deep Research to API, and more (June 27, 2025)

With Gears of War: Reloaded on the way, which Xbox 360 game would you like to see get rebuilt next? — Weekend discussion 💬

Capcom’s finally giving Street Fighter 6 players the outfits they’ve wanted — when all else fails, send in swimsuits

After 14 years, Monster Hunter Wilds is bringing back underwater combat alongside “Lagiacrus” and another familiar monster — the impossible has happened

OpenAI may prematurely declare AGI to cut ties with Microsoft — despite Sam Altman admitting today’s tech isn’t built for it

How Code Feedback MCP Enhances AI-Generated Code Quality

How Code Feedback MCP Enhances AI-Generated Code Quality

PRSS Site Creator – Create Blogs and Websites from Your Desktop

Say hello to ECMAScript 2025

With Gears of War: Reloaded on the way, which Xbox 360 game would you like to see get rebuilt next? — Weekend discussion 💬

With Gears of War: Reloaded on the way, which Xbox 360 game would you like to see get rebuilt next? — Weekend discussion 💬

Jasmine – web launcher and session management application

Schulrechner – calculator you know from school

CVE-2025-45746 – ZKT ZKBio CVSecurity Hardcoded JWT Secret Authentication Bypass

⚡ Weekly Recap: Chrome 0-Day, 7.3 Tbps DDoS, MFA Bypass Tricks, Banking Trojan and More

China-linked Salt Typhoon Exploits Critical Cisco Vulnerability to Target Canadian Telecom

“We want to get the gang back together.” Star Wars Battlefront 2 devs say they’d come back as player counts skyrocket, fans clamor for Battlefront 3 after Andor

How to Crack Any WordPress Admin Account

With the latest KB5055613, Windows enhances Widgets with AI capabilities, allowing them to display videos

CVE-2025-5634 – PCMan FTP Server NOOP Command Handler Buffer Overflow

Elevating API Automation: Exploring Karate as an Alternative to Rest-Assured

Lazarus Hits 6 South Korean Firms via Cross EX, Innorix Zero-Day and ThreatNeedle Malware

CVE-2025-49155 – Trend Micro Apex One Uncontrolled Search Path Vulnerability (Arbitrary Code Execution)

CVE-2025-4755 – D-Link DI-7003GV2 Authentication Bypass Vulnerability

CVE-2025-45746 – ZKT ZKBio CVSecurity Hardcoded JWT Secret Authentication Bypass

Related Posts