Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-57490

Guangzhou Hongfan Technology Co., LTD. iOffice20 has any user login vulnerability. An attacker can log in to any system account including the system administrator through a logical flaw.

Published

2025-03-21T14:15:15.120

Last Modified

2025-04-01T20:23:36.507

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 7.7 (HIGH)

Weaknesses

Type: Secondary
CWE-287

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	ioffice	ioffice20	-	Yes

References

https://gist.github.com/NaliangzzZ/44bfcc1d9c2cf275d2b6683ca9e20980 Third Party Advisory ([email protected])
https://www.ioffice.cn Product ([email protected])