CVE-2025-10161

Summary

Improper Restriction of Excessive Authentication Attempts, Client-Side Enforcement of Server-Side Security, Reliance on Untrusted Inputs in a Security Decision vulnerability in Turkguven Software Technologies Inc. Perfektive allows Brute Force, Authentication Bypass, Functionality Bypass.

This issue affects Perfektive: before Version: 12574 Build: 2701.

Affected Software

VendorProductVersion RangeStatus
Turkguven Software Technologies Inc.Perfektive0 < Version: 12574 Build: 2701affected

Weaknesses

  • CWE-307: CWE-307 Improper Restriction of Excessive Authentication Attempts
  • CWE-602: CWE-602 Client-Side Enforcement of Server-Side Security
  • CWE-807: CWE-807 Reliance on Untrusted Inputs in a Security Decision

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References