exploitDog

GHSA-2369-45jq-xgc9

Опубликовано: 04 мар. 2026

Источник: github

Github: Не прошло ревью

CVSS4: 5.3

CVSS3: 7.2

Описание

Improper validation of API end-point in 2N Access Commander version 3.4.2 and prior allows attacker to bypass password policy for backup file encryption. This vulnerability can only be exploited after authenticating with administrator privileges.

Improper validation of API end-point in 2N Access Commander version 3.4.2 and prior allows attacker to bypass password policy for backup file encryption. This vulnerability can only be exploited after authenticating with administrator privileges.

Ссылки

EPSS

Процентиль: 12%

0.00041

Низкий

5.3 Medium

CVSS4

7.2 High

CVSS3

CVE ID

Дефекты

CWE-1286

Связанные уязвимости

CVE-2025-59785

CVSS3: 7.2

nvd

22 дня назад

Improper validation of API end-point in 2N Access Commander version 3.4.2 and prior allows attacker to bypass password policy for backup file encryption. This vulnerability can only be exploited after authenticating with administrator privileges.

EPSS

Процентиль: 12%

0.00041

Низкий

5.3 Medium

CVSS4

7.2 High

CVSS3

CVE ID

Дефекты

CWE-1286