9.6
CVE-2026-5166
- EPSS 0.33%
- Veröffentlicht 29.04.2026 14:33:34
- Zuletzt bearbeitet 06.06.2026 08:16:54
- Quelle iletisim@usom.gov.tr
- CVE-Watchlists
- Unerledigt
Path Traversal in TUBITAK BILGEM's Pardus Software Center
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus Software Center allows Path Traversal.
This issue affects Pardus Software Center: before 0.6.4.Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerTUBITAK BILGEM Software Technologies Research Institute
≫
Produkt
Pardus Software Center
Default Statusunaffected
Version
0
Version <
0.6.4
Status
affected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.33% | 0.242 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| iletisim@usom.gov.tr | 9.6 | 2.8 | 6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
|
CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.
https://www.usom.gov.tr/bildirim/tr-26-0131
https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0131