2n: Security Vulnerabilities
In 2N Access Commander versions 3.1.1.2 and prior, a local attacker can escalate their privileges in the system which could allow for arbitrary
code execution with root permissions.
CVSS Score
4.7
EPSS Score
0.0
Published
2024-11-05
In 2N Access Commander versions 3.1.1.2 and prior, an Insufficient
Verification of Data Authenticity vulnerability could allow an attacker
to escalate their privileges and gain root access to the system.
CVSS Score
6.3
EPSS Score
0.0
Published
2024-11-05
In 2N Access Commander versions 3.1.1.2 and prior, a Path Traversal vulnerability could allow an attacker with administrative privileges to write files on the filesystem and potentially achieve arbitrary remote code execution. This vulnerability cannot be exploited by users with lower privilege roles.
CVSS Score
7.2
EPSS Score
0.007
Published
2024-11-05
On 2N Access Unit 2.0 2.31.0.40.5 devices, an attacker can pose as the web relay for a man-in-the-middle attack.
CVSS Score
4.6
EPSS Score
0.002
Published
2021-08-13