Critical severity9.8NVD Advisory· Published Aug 11, 2025· Updated Apr 15, 2026

CVE-2025-8853

Description

Official Document Management System developed by 2100 Technology has an Authentication Bypass vulnerability, allowing unauthenticated remote attackers to obtain any user's connection token and use it to log into the system as that user.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.chtsecurity.com/news/8618a2f0-390a-4506-9ff8-a9e74030d19envd
www.chtsecurity.com/news/a9a90f0b-c2cb-4c66-b3d1-bc7f252fd108nvd
www.twcert.org.tw/en/cp-139-10320-ad540-2.htmlnvd
www.twcert.org.tw/tw/cp-132-10319-adc18-1.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000