Taiwan Secom Dr.ID Access Control system’s login page has a hard-coded credential in the source code. An unauthenticated remote attacker can use the hard-coded credential to acquire partial system information and modify system setting to cause partial disrupt of service.
CPE | Name | Operator | Version |
---|---|---|---|
dr.id_access_control | eq | 3.3.2 | |
dr.id_attendance_system | eq | 3.4.0.0.3.11 |