CVE-2020-3935

Summary

TAIWAN SECOM CO., LTD., a Door Access Control and Personnel Attendance Management system, stores users’ information by cleartext in the cookie, which divulges password to attackers.

Affected Software

VendorProductVersion RangeStatus
TAIWAN SECOM CO., LTD.Door Access Control system0 <= 3.3.2affected
TAIWAN SECOM CO., LTD.Personnel Attendance system0 <= 3.3.0.3_20160517affected

Weaknesses

  • Sensitivity Information Exposure

ADP Enrichment

CVE Program Container

Additional References

References