Improper Access Control in Premierturk’s Excavation Management Information System

8.1 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Description

Files or Directories Accessible to External Parties, Exposure of Private Personal Information to an Unauthorized Actor vulnerability in Premierturk Information Technologies Inc. Excavation Management Information System allows Footprinting, Functionality Misuse.This issue affects Excavation Management Information System: before v.10.2025.01.

Basic Information

ID CVE-2025-11959

Source TR-CERT

Published Nov 11, 2025 at 14:11

Affected Product

Vendor Premierturk Information Technologies Inc.

Product Excavation Management Information System

Affected Versions Premierturk Information Technologies Inc. Excavation Management Information System 0

CWE Classification

CWE-552 CWE-359

References

www.usom.gov.tr /bildirim/tr-25-0388

{
    "lastseen": "",
    "description": "Files or Directories Accessible to External Parties, Exposure of Private Personal Information to an Unauthorized Actor vulnerability in Premierturk Information Technologies Inc. Excavation Management Information System allows Footprinting, Functionality Misuse.This issue affects Excavation Management Information System: before v.10.2025.01.",
    "published": "2025-11-11T14:11:50.111Z",
    "modified": "2025-11-11T14:11:50.111Z",
    "type": "cve",
    "title": "Improper Access Control in Premierturk's Excavation Management Information System",
    "source": "TR-CERT",
    "references": "https://www.usom.gov.tr/bildirim/tr-25-0388",
    "id": "CVE-2025-11959",
    "bulletinFamily": "",
    "cwe": [
        "CWE-552",
        "CWE-359"
    ],
    "cvelist": null,
    "sourceData": "Premierturk Information Technologies Inc. Excavation Management Information System 0",
    "sourceHref": "",
    "cvss": {
        "score": 8.1,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Excavation Management Information System",
    "version": "0",
    "vendor": "Premierturk Information Technologies Inc.",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Improper Access Control in Premierturk’s Excavation Management Information System_CVE-2025-11959