CVE-2025-15023 - Vulnerability Analysis
HighCVSS: 8.8Last Updated: May 14, 2026
Yordam Library Automation System - Broken Access Control
Published: May 14, 2026Updated: May 14, 2026Remote Exploitable
Overview
Yordam Information Technology Consulting, Training and Electronic Systems Industry and Trade Inc. Library Automation System from v.19.5 before v.22.1 contains an incorrect authorization vulnerability caused by misconfigured access control security levels, letting attackers bypass access restrictions, exploit requires no special privileges.
Severity & Score
Severity: High
CVSS Score: 8.8
Impact
Attackers can bypass access controls, potentially accessing or modifying unauthorized data.
Mitigation
Update to version 22.1 or later.
Related Resources
Details
- CVE ID
- CVE-2025-15023
- Severity
- High
- CVSS Score
- 8.8
- Type
- broken_access_control
- Status
- rejected
CWE
- CWE-863
CVSS Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H