Critical Vulnerabilities Found in 2N Access Commander API

Critical Vulnerabilities Found in 2N Access Commander API

First seen 5 Mar 2026, 17:11 UTC Nvd.Nist 83% similarity 63.8

Article Content

Browse articles
ThreatCluster

Two vulnerabilities have been identified in the 2N Access Commander software, versions 3.4.1 and 3.4.2. CVE-2025-59783 allows OS command injection through an insufficiently validated API endpoint, while CVE-2025-59785 enables bypassing password policies for backup file encryption, both requiring administrator authentication for exploitation.

ThreatCluster AI

Timeline

2026-03-04
CVE-2025-59783 published
2026-03-04
CVE-2025-59785 published
2026-03-05
Articles published detailing vulnerabilities

Community

Browse all →