9.1
CVSSv3

CVE-2023-38028

Published: 28/08/2023 Updated: 29/08/2023
CVSS v3 Base Score: 9.1 | Impact Score: 5.2 | Exploitability Score: 3.9
VMScore: 0

Vulnerability Summary

Saho’s attendance devices ADM100 and ADM-100FP have insufficient authentication. An unauthenticated remote attacker can exploit this vulnerability to bypass authentication to read system information and operate user's data, but can’t control system or disrupt service.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

saho adm-100 firmware 0.0.4.0

saho adm-100 firmware 0.0.4.3

saho adm-100 firmware 0.0.4.6

saho adm-100 firmware 0.0.4.8

saho adm-100 firmware q20100602

saho adm-100 firmware t190

saho adm-100 firmware t17041702

saho adm-100 firmware t18051803

saho adm-100fp firmware q20100602

saho adm-100fp firmware t190

saho adm-100fp firmware t17041702

saho adm-100fp firmware t18051803