2n Access_commander

8 CVEs affecting 2n Access_commander. Latest disclosed: 2026-03-04. Critical: 1, High: 4.

Top CVEs affecting 2n Access_commander
CVESeverityScorePublishedSummary
CVE-2025-59786Critical9.82026-03-042N Access Commander version 3.4.2 and prior improperly invalidates session tokens, allowing multiple session cookies to remain active after logout in web appli…
CVE-2025-59785High7.22026-03-04Improper validation of API end-point in 2N Access Commander version 3.4.2 and prior allows attacker to bypass password policy for backup file encryption. This…
CVE-2025-59784High7.22026-03-042N Access Commander version 3.4.1 and prior is vulnerable to log pollution. Certain parameters sent over API may be included in the logs without prior validati…
CVE-2025-59783High7.22026-03-04API endpoint for user synchronization in 2N Access Commander version 3.4.1 did not have a sufficient input validation allowing for OS command injection. This…
CVE-2024-47253High7.22024-11-05In 2N Access Commander versions 3.1.1.2 and prior, a Path Traversal vulnerability could allow an attacker with administrative privileges to write files on the…
CVE-2025-59787Medium6.52026-03-042N Access Commander application version 3.4.2 and prior returns HTTP 500 Internal Server Error responses when receiving malformed or manipulated requests, indi…
CVE-2024-47254Medium6.32024-11-05In 2N Access Commander versions 3.1.1.2 and prior, an Insufficient Verification of Data Authenticity vulnerability could allow an attacker to escalate their…
CVE-2024-47255Medium4.72024-11-05In 2N Access Commander versions 3.1.1.2 and prior, a local attacker can escalate their privileges in the system which could allow for arbitrary code execution…