CVE-2025-13506 | THREATINT

Description

Execution with Unnecessary Privileges vulnerability in Nebim Neyir Computer Industry and Services Inc. Nebim V3 ERP allows Expanding Control over the Operating System from the Database.This issue affects Nebim V3 ERP: from 2.0.59 before 3.0.1.

PUBLISHED Reserved 2025-11-21 | Published 2025-12-12 | Updated 2025-12-12 | Assigner TR-CERT

HIGH: 8.8CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Problem types

CWE-250 Execution with Unnecessary Privileges

Product status

Default status

unaffected

2.0.59 (custom) before 3.0.1

affected

Credits

Mehmet Tolga DEMİRCİ finder

References

www.usom.gov.tr/bildirim/tr-25-0450

cve.org (CVE-2025-13506)

nvd.nist.gov (CVE-2025-13506)

Download JSON