An issue was discovered in Newland Nquire 1000 Interactive Kiosk version NQ1000-II_G_V1.00.011, allows remote attackers to escalate privileges and bypass authentication via incorrect access control in the web management portal.
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.