Vulnerability Description
Official Document Management System developed by 2100 Technology has an Authentication Bypass vulnerability, allowing unauthenticated remote attackers to obtain any user's connection token and use it to log into the system as that user.
CVSS Score
CRITICAL
Related Weaknesses (CWE)
References
- https://www.chtsecurity.com/news/8618a2f0-390a-4506-9ff8-a9e74030d19e
- https://www.chtsecurity.com/news/a9a90f0b-c2cb-4c66-b3d1-bc7f252fd108
- https://www.twcert.org.tw/en/cp-139-10320-ad540-2.html
- https://www.twcert.org.tw/tw/cp-132-10319-adc18-1.html
FAQ
What is CVE-2025-8853?
CVE-2025-8853 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Official Document Management System developed by 2100 Technology has an Authentication Bypass vulnerability, allowing unauthenticated remote attackers to obtain any user's connection token and use it ...
How severe is CVE-2025-8853?
CVE-2025-8853 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2025-8853?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.