Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Image Access GmbH — Vulnerabilities & Security Advisories 14

Browse all 14 CVE security advisories affecting Image Access GmbH. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Image Access GmbH develops document scanning and capture solutions for enterprise environments. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from improper input validation and access control issues. The company has addressed multiple CVEs related to authentication bypass and insecure default configurations. While no major public security incidents have been documented, the consistent pattern of vulnerabilities in their software suggests a need for enhanced security development practices. Organizations implementing Image Access solutions should prioritize timely patching and harden configurations against common attack vectors.

Top products by Image Access GmbH: Scan2Net
CVE IDTitleCVSSSeverityPublished
CVE-2024-28143 Insecure Password Change Function — Scan2NetCWE-620 9.8 -2024-12-12
CVE-2024-28146 Hardcoded credentials — Scan2NetCWE-798 9.8 -2024-12-12
CVE-2024-50584 SQL Injection — Scan2NetCWE-89 8.8 -2024-12-12
CVE-2024-28145 Unauthenticated SQL Injection — Scan2NetCWE-89 9.8 -2024-12-12
CVE-2024-28144 Broken Access Control — Scan2NetCWE-384 9.8 -2024-12-12
CVE-2024-36494 Reflected Cross Site Scripting — Scan2NetCWE-79 6.1 -2024-12-12
CVE-2024-36498 Stored cross site scripting — Scan2NetCWE-79 4.8 -2024-12-12
CVE-2024-47947 Stored cross site scripting — Scan2NetCWE-79 4.8 -2024-12-12
CVE-2024-28142 Stored cross site scripting — Scan2NetCWE-79 5.4 -2024-12-12
CVE-2024-28141 Cross-Site Request-Forgery — Scan2NetCWE-352 8.8 -2024-12-11
CVE-2024-28140 Violation of Least Privilege Principle — Scan2NetCWE-250 9.8 -2024-12-11
CVE-2024-28139 Privilege escalation through sudo misconfiguration — Scan2NetCWE-250 7.8 -2024-12-11
CVE-2024-47946 OS Command Execution through Arbitrary File Upload — Scan2NetCWE-434 8.8 -2024-12-10
CVE-2024-28138 OS Command Injection — Scan2NetCWE-78 9.8 -2024-12-10

This page lists every published CVE security advisory associated with Image Access GmbH. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.