Authentication Bypass Vulnerability in 2100 Technology's Official Document Management System
CVE-2025-8853

9.3CRITICAL

Key Information:

Vendor

2100 Technology

Status
Official Document Management System
Vendor
CVE Published:
11 August 2025

What is CVE-2025-8853?

The Official Document Management System from 2100 Technology has a security flaw that enables remote attackers to bypass authentication. This vulnerability allows unauthorized individuals to obtain the connection tokens of any user, granting them the ability to log in as that user without any proper authentication. This can lead to severe risks, including unauthorized access to sensitive documents and user information.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Official Document Management System 5.0.89.0

Official Document Management System 5.0.89.1

Official Document Management System 5.0.89.2

References

https://www.twcert.org.tw/tw/cp-132-10319-adc18-1.html
third-party-advisory
https://www.twcert.org.tw/en/cp-139-10320-ad540-2.html
third-party-advisory
https://www.chtsecurity.com/news/8618a2f0-390a-4506-9ff8-...
third-party-advisory

CVSS V4

Score:
9.3
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.