CVE-2025-4378

Summary

Cleartext Transmission of Sensitive Information, Use of Hard-coded Credentials vulnerability in Ataturk University ATA-AOF Mobile Application allows Authentication Abuse, Authentication Bypass.

This issue affects ATA-AOF Mobile Application: before 20.06.2025.

Affected Software

VendorProductVersion RangeStatus
Ataturk UniversityATA-AOF Mobile Application0 < 20.06.2025affected

Weaknesses

  • CWE-319: CWE-319 Cleartext Transmission of Sensitive Information
  • CWE-798: CWE-798 Use of Hard-coded Credentials

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References