CVE-2025-8853 CRITICAL

CVE-2025-8853: 2100 Technology|Official Document Management System - Authentication Bypass

Vendor 2100 Technology
Product Official Document Management System
Weakness CWE-290
Published August 11, 2025
Last update August 11, 2025

CVSS base score

9.8/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

Official Document Management System developed by 2100 Technology has an Authentication Bypass vulnerability, allowing unauthenticated remote attackers to obtain any user's connection token and use it to log into the system as that user.

Key dates

02Disclosure timeline

August 11, 2025 CVE published
August 11, 2025 Record updated