Back to overview

CVE-2026-12250

HIGH
7.9
CVSS 3.1
Description
Invocation of process using visible sensitive information vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus Domain Joiner allows Excavation. This issue affects Pardus Domain Joiner: from 0.5.2 before 0.5.4.

Metadata

CVE ID
CVE-2026-12250
State
PUBLISHED
Assigner
TR-CERT
Reserved
2026-06-15 08:02 UTC
Published
2026-07-05 14:27 UTC
Last updated
2026-07-06 13:25 UTC
Primary CWE
CWE-214
CWE-214 Invocation of process using visible sensitive inform…
Vendor / Product
TUBITAK BILGEM Software Technologies Research Institute / Pardus Domain Joiner
Sources
cve.org  ·  NVD

Severity & Metrics

7.9 HIGH CVSS 3.1
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N
SSVC — CISA Coordinator
Exploitation
none
Automatable
no
Tech. Impact
total
Affected products (1)
VendorProductPlatformVersions
TUBITAK BILGEM Software Technologies Research Institute Pardus Domain Joiner 0.5.2 < 0.5.4
Weakness (CWE)
CWESourceDescription
CWE-214 cna CWE-214 Invocation of process using visible sensitive information
CVSS scores (1)
ScoreSeverityVersionSourceVector
7.9 HIGH 3.1 cna CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N
Back to overview