CVE-2021-47706
COMMAX Biometric Access Control System Authentication Bypass
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
COMMAX Biometric Access Control System 1.0.0 contains an authentication bypass vulnerability that allows unauthenticated attackers to access sensitive information and circumvent physical controls in smart homes and buildings by exploiting cookie poisoning. Attackers can forge cookies to bypass authentication and disclose sensitive information.
| CWE | CWE-565 |
| Vendor | commax co., ltd. |
| Product | commax biometric access control system |
| Published | Dec 9, 2025 |
| Last Updated | Apr 7, 2026 |
Stay Ahead of the Next One
Get instant alerts for commax co., ltd. commax biometric access control system
Be the first to know when new unknown vulnerabilities affecting commax co., ltd. commax biometric access control system are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
COMMAX Co., Ltd. / COMMAX Biometric Access Control System
1.0.0
References
exploit-db.com: https://www.exploit-db.com/exploits/50206 commax.com: https://www.commax.com zeroscience.mk: https://www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5661.php commax.com: https://www.commax.com/product/ vulncheck.com: https://www.vulncheck.com/advisories/commax-biometric-access-control-system-authentication-bypass
Credits
LiquidWorm as Gjoko Krstic of Zero Science Lab