CVE-2020-3934

TAIWAN SECOM CO., LTD., a Door Access Control and Personnel Attendance Management system, contains a vulnerability of Pre-auth SQL Injection, allowing attackers to inject a specific SQL command.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:secom:dr.id_access_control:*:*:*:*:*:*:*:*
cpe:2.3:a:secom:dr.id_attendance_system:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2020-02-11 12:15

Updated : 2024-02-28 17:28


NVD link : CVE-2020-3934

Mitre link : CVE-2020-3934

CVE.ORG link : CVE-2020-3934


JSON object : View

Products Affected

secom

  • dr.id_attendance_system
  • dr.id_access_control
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')