The U-Office Force from e-Excellence has an Improper Authentication vulnerability, allowing unauthenticated remote attackers to use a particular API and alter cookies to log in as an administrator.
An attacker exploits specific APIs available without authentication, and then manipulates cookie values in such a way that the system treats them as a logged-in administrator. The error stems from improper user identity validation on the server side (CWE-565 — Reliance on Cookies without Validation and Integrity Checking). As a result, the access control mechanism based on cookies can be completely bypassed by an unauthorized person.
An attacker gains full administrative access to the U-Office Force system, which may lead to disclosure of confidential data, modification of system configuration, or complete system takeover.
Apply patches available from the vendor according to references published by TWCERT/CC at: https://www.twcert.org.tw/en/cp-139-10012-d5bbc-2.html and https://www.twcert.org.tw/tw/cp-132-10011-3de72-1.html
The U-Office Force product from e-Excellence (Edetw); specific versions should be verified in the vendor references published by TWCERT/CC.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HEdetw U Office Force
APPEdetw< 28.0
Related vulnerabilities
Insecure Deserialization w Edetw U-Office Force umożliwia zdalne RCE
e-Excellence U-Office Force file uploading function does not restrict upload of file with dangerous type. An ...
U-Office Force developed by e-Excellence has a SQL Injection vulnerability, allowing authenticated remote atta...
U-Office Force developed by e-Excellence has a SQL Injection vulnerability, allowing authenticated remote atta...
The U-Office Force from e-Excellence has an Arbitrary File Upload vulnerability, allowing remote attackers wit...