Tag
#TUBITAK BILGEM
CVE-2026-6509: Missing Authorization in TUBITAK BILGEM Pardus Update Leads to Privilege Escalation
A Missing Authorization vulnerability, CVE-2026-6509, with a CVSS score of 7.8, was discovered in TUBITAK BILGEM Software Technologies Research Institute's Pardus Update. This vulnerability allows for Privilege Escalation and affects versions up to 0.6.3 before 0.6.6. Although not actively exploited, the vulnerability poses a high risk due to its local attack vector and potential for high impact. Immediate patching to version 0.6.6 or later is recommended.
Critical Missing Authorization Vulnerability in TUBITAK BILGEM pardus-software
A critical Missing Authorization vulnerability, CVE-2026-14460, with a CVSS score of 8.8, was discovered in TUBITAK BILGEM's pardus-software. This vulnerability allows for Argument Injection and affects versions <= 1.0.4 before 1.0.5. Although not actively exploited, the vulnerability poses a high risk due to its local attack vector and potential for high impact. Immediate patching to version 1.0.5 is recommended.