CVE-2020-3934

Summary

TAIWAN SECOM CO., LTD., a Door Access Control and Personnel Attendance Management system, contains a vulnerability of Pre-auth SQL Injection, allowing attackers to inject a specific SQL command.

Affected Software

VendorProductVersion RangeStatus
TAIWAN SECOM CO., LTD.Door Access Control system0 <= 3.3.2affected
TAIWAN SECOM CO., LTD.Personnel Attendance system0 <= 3.3.0.3_20160517affected

Weaknesses

  • Pre-auth SQL Injection

ADP Enrichment

CVE Program Container

Additional References

References