CVE 8.8 HIGH

Improper Authorization in Nebim Neyir’s Nebim V3 ERP_CVE-2025-13506

December 12, 2025 invoker category_cve

8.8 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

Execution with Unnecessary Privileges vulnerability in Nebim Neyir Computer Industry and Services Inc. Nebim V3 ERP allows Expanding Control over the Operating System from the Database.This issue affects Nebim V3 ERP: from 2.0.59 before 3.0.1.

AI Analysis

Execution with Unnecessary Privileges vulnerability allowing control over the Operating System from the Database

Basic Information

ID CVE-2025-13506

Source TR-CERT

Published Dec 12, 2025 at 12:19

Modified Dec 12, 2025 at 12:28

Affected Product

Vendor Nebim Neyir Computer Industry and Services Inc.

Product Nebim V3 ERP

Version 2.0.59

Affected Versions Nebim Neyir Computer Industry and Services Inc. Nebim V3 ERP 2.0.59

CWE Classification

CWE-250

AI Assessment

AI Score 8.8 / 10

AI Severity High

Vendor Nebim Neyir Computer Industry and Services Inc.

Product Nebim V3 ERP

Version 2.0.59

References

www.usom.gov.tr /bildirim/tr-25-0450

{
    "lastseen": "",
    "description": "Execution with Unnecessary Privileges vulnerability in Nebim Neyir Computer Industry and Services Inc. Nebim V3 ERP allows Expanding Control over the Operating System from the Database.This issue affects Nebim V3 ERP: from 2.0.59 before 3.0.1.",
    "published": "2025-12-12T12:19:37.226Z",
    "modified": "2025-12-12T12:28:32.948Z",
    "type": "cve",
    "title": "Improper Authorization in Nebim Neyir's Nebim V3 ERP",
    "source": "TR-CERT",
    "references": "https://www.usom.gov.tr/bildirim/tr-25-0450",
    "id": "CVE-2025-13506",
    "bulletinFamily": "",
    "cwe": [
        "CWE-250"
    ],
    "cvelist": null,
    "sourceData": "Nebim Neyir Computer Industry and Services Inc. Nebim V3 ERP 2.0.59",
    "sourceHref": "",
    "cvss": {
        "score": 8.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Nebim V3 ERP",
    "version": "2.0.59",
    "vendor": "Nebim Neyir Computer Industry and Services Inc.",
    "ai_description": "Execution with Unnecessary Privileges vulnerability allowing control over the Operating System from the Database",
    "ai_severity": "High",
    "ai_vendor": "Nebim Neyir Computer Industry and Services Inc.",
    "ai_product": "Nebim V3 ERP",
    "ai_version": "2.0.59",
    "ai_score": 8.8
}

💭 Join the Security Discussion ❌ Cancel Reply