CVE-2025-11959
8.1
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Summary
Files or Directories Accessible to External Parties, Exposure of Private Personal Information to an Unauthorized Actor vulnerability in Premierturk Information Technologies Inc. Excavation Management Information System allows Footprinting, Functionality Misuse.
This issue affects Excavation Management Information System: before v.10.2025.01.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Premierturk Information Technologies Inc. | Excavation Management Information System | 0 < v.10.2025.01 | affected |
Weaknesses
- CWE-552: CWE-552 Files or Directories Accessible to External Parties
- CWE-359: CWE-359 Exposure of Private Personal Information to an Unauthorized Actor
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
- https://www.usom.gov.tr/bildirim/tr-25-0388
- https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-25-0388
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.