CVE-2025-9986 | THREATINT

Description

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Vadi Corporate Information Systems Ltd. Co. DIGIKENT allows Excavation.This issue affects DIGIKENT: through 13092025.

PUBLISHED Reserved 2025-09-04 | Published 2026-02-11 | Updated 2026-02-11 | Assigner TR-CERT

HIGH: 8.2CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

Problem types

CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere

Product status

Default status

unaffected

Any version

affected

Credits

Ferhat UÇAR finder

References

www.usom.gov.tr/bildirim/tr-26-0056 third-party-advisory

cve.org (CVE-2025-9986)

nvd.nist.gov (CVE-2025-9986)

Download JSON