Primary

Context

DOS SS1 Inadequate Encryption Strength Vulnerability Allowing Unauthorized Access to Authenticated Functions

Vulnerability

Patched

A vulnerability exists in DOS SS1 versions through 16.0.0.10 and media version 16.0.0a and earlier, due to inadequate encryption strength. This vulnerability allows remote, unauthenticated attackers to access functions that require authentication.

Impact

Exploitation of this vulnerability allows remote, unauthenticated access to functions that require authentication.

Remediation

Users are advised to update to the latest version of SS1. For SS1 Cloud, update to a version later than 2.1.3. Instructions for applying the update are available on the DOS Co., Ltd. website.

Added: Sep 1, 2025, 7:22 PM

Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.7

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.7

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

DOS SS1 Inadequate Encryption Strength Vulnerability Allowing Unauthorized Access to Authenticated Functions

Vulnerability

Impact

Remediation

Affected Products

DOS Co., Ltd. SS1

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating