Primary

Context

2N Access Commander Password Policy Bypass Vulnerability in Backup File Encryption

Vulnerability

Patched

A vulnerability exists in 2N Access Commander versions through 3.4.2 due to improper validation of an API endpoint. This flaw allows an authenticated attacker with administrator privileges to bypass the password policy for encrypting backup files.

Impact

Exploitation of this vulnerability could lead to unauthorized bypassing of encryption password policies, potentially allowing for unprotected backup files.

Remediation

Users are advised to update to 2N Access Commander version 3.5 or later, where this vulnerability has been addressed.

Added: Mar 4, 2026, 4:27 PM

Updated: Mar 4, 2026, 6:27 PM

Vulnerability Rating

Custom Algorithm

spread

1.4

impact

0.6

exploitability

4.4

remediation

7.7

relevance

3.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.4

impact

0.6

exploitability

4.4

remediation

7.7

relevance

3.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

2N Access Commander Password Policy Bypass Vulnerability in Backup File Encryption

Vulnerability

Impact

Remediation

Affected Products

2N Access Commander

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating