Approved changes feed: RSS · Atom

cpe:2.3:a:secom:dr.id_access_control:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorSecom (59a3b4d3-1031-56e5-b05a-eeb64f8a1498)
ProductDr.Id Access Control (88b762cd-29d0-5564-8200-3115a4412aac)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2024-7731 vulnerable 2026-06-08 06:58:23.300523 SECOM Dr.ID Access control system - SQL injection
CRITICAL (9.8)
Dr.ID Access Control System from SECOM does not properly validate a specific page parameter, allowing unauthenticated remote attackers to inject SQL commands to read, modify, and delete database contents.
Published: 2024-08-14T06:30:58.938Z
Updated: 2024-08-14T13:23:19.734Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-35961 vulnerable 2026-06-08 05:32:49.466302 TAIWAN SECOM CO., LTD., Door Access Control and Personnel Attendance Management system - Use of Hard-coded Credentials
CRITICAL (9.8)
Dr. ID Door Access Control and Personnel Attendance Management system uses the hard-code admin default credentials that allows remote attackers to access the system through the default password and obtain the highest permission.
Published: 2021-07-16T15:20:34.752Z
Updated: 2024-09-17T01:16:12.106Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-3934 vulnerable 2026-06-08 05:25:57.932866 TAIWAN SECOM CO., LTD. - Pre-auth SQL Injection
CRITICAL (9.8)
TAIWAN SECOM CO., LTD., a Door Access Control and Personnel Attendance Management system, contains a vulnerability of Pre-auth SQL Injection, allowing attackers to inject a specific SQL command.
Published: 2020-02-11T08:00:29.639Z
Updated: 2024-09-17T01:45:45.481Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-3933 vulnerable 2026-06-08 05:25:57.931724 TAIWAN SECOM CO., LTD. - User Account Enumeration
MEDIUM (5.3)
TAIWAN SECOM CO., LTD., a Door Access Control and Personnel Attendance Management system, allows attackers to enumerate and exam user account in the system.
Published: 2020-02-11T08:00:29.196Z
Updated: 2024-09-17T03:23:28.966Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.