Approved changes feed: RSS · Atom

cpe:2.3:a:2100_technology_electronic:official_document_management_system:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor2100 Technology Electronic (bc34bc26-f397-56e8-9394-9e5ade70403d)
ProductOfficial Document Management System (84cbf2d1-fe13-513b-9c1a-4c016fe2d5f7)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2024-13061 vulnerable 2026-06-08 06:25:36.628221 2100 Technology Electronic Official Document Management System - Authentication Bypass
CRITICAL (9.8)
The Electronic Official Document Management System from 2100 Technology has an Authentication Bypass vulnerability. Although the product enforces an IP whitelist for the API used to query user tokens, unauthenticated remote attackers can still deceive the server to obtain tokens of arbitrary users, which can then be used to log into the system.
Published: 2024-12-31T11:13:46.744Z
Updated: 2025-01-02T00:56:52.995Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.