2023-08-28 04:12:44
twcert
PUBLISHED
Saho’s attendance devices ADM100 and ADM-100FP have insufficient authentication. An unauthenticated remote attacker can exploit this vulnerability to bypass authentication to read system information and operate users data, but can’t control system or disrupt service.