Unknown · Electronic Official Document Management System · CVE-2024-13061
**Name of the Vulnerable Software and Affected Versions**
Electronic Official Document Management System (affected versions not specified)
**Description**
The Electronic Official Document Management System has an Authentication Bypass issue. Although the product enforces an IP whitelist for the API used to query user tokens, unauthenticated remote attackers can still deceive the server to obtain tokens of arbitrary users, which can then be used to log into the system.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.