5 matches found
CVE-2024-13061
The Electronic Official Document Management System from 2100 Technology has an Authentication Bypass vulnerability. Although the product enforces an IP whitelist for the API used to query user tokens, unauthenticated remote attackers can still deceive the server to obtain tokens of arbitrary user...
CVE-2024-6737
The access control in the Electronic Official Document Management System from 2100 TECHNOLOGY is not properly implemented, allowing remote attackers with regular privileges to access the account settings functionality and create an administrator account...
CVE-2024-6737
CVE-2024-6737 affects the Electronic Official Document Management System from 2100 TECHNOLOGY. The root cause is broken access control that allows remote attackers with regular privileges to access the account settings functionality and create an administrator account. The CVSS 3.1 metrics from T...
CVE-2024-6737 2100 TECHNOLOGY Electronic Official Document Management System - Broken Access Control
The access control in the Electronic Official Document Management System from 2100 TECHNOLOGY is not properly implemented, allowing remote attackers with regular privileges to access the account settings functionality and create an administrator account...
CVE-2024-6737 2100 TECHNOLOGY Electronic Official Document Management System - Broken Access Control
The access control in the Electronic Official Document Management System from 2100 TECHNOLOGY is not properly implemented, allowing remote attackers with regular privileges to access the account settings functionality and create an administrator account...