Vulnerability in 2n Access_commander

CVE-2025-59785

Improper validation of API end-point in 2N Access Commander version 3.4.2 and prior allows attacker to bypass password policy for backup file encryption. This vulnerability can only be exploited after authenticating with administrator priv…

EPSS: 0.002 (8.7th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.2 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H.

Affected products

Weakness classification (CWE)

References

Frequently asked questions

What is CVE-2025-59785?
CVE-2025-59785 is a high-severity vulnerability in 2n Access_commander, classified under CWE-1286. CVSS score: 7.2/10. Published 2026-03-04.
How severe is CVE-2025-59785?
High severity. CVSS v3 base score is 7.2 out of 10.