CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-59783

API endpoint for user synchronization in 2N Access Commander version 3.4.1 did not have a sufficient input validation allowing for OS command injection. This vulnerability can only be exploited after authenticating with administrator privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 60.4%

CVSS Severity

CVSS v3 Score 7.2

References

https://www.2n.com/en-GB/download/cve_2025_59783_acom_3_5_v1pdf

Products affected by CVE-2025-59783

2n » Access Commander » Version: N/A

cpe:2.3:a:2n:access_commander:-
2n » Access Commander » Version: 3.1.1.2

cpe:2.3:a:2n:access_commander:3.1.1.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-59783

Products

Pricing

Contact Us