CVE-2025-7706

Missing Authentication for Critical Function vulnerability in TUBITAK BILGEM Software Technologies Research Institute Liderahenk allows Remote Code Inclusion.This issue affects Liderahenk: from 3.0.0 to 3.3.1 before 3.5.0.

CVSS v3 6.1 MEDIUM

6.1^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 0.9 / Impact : 5.2

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required HIGH

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://www.usom.gov.tr/bildirim/tr-26-0069

Configurations

No configuration.

History

18 Feb 2026, 17:52

Type	Values Removed	Values Added
Summary		(es) Vulnerabilidad de ausencia de autenticación para función crítica en TUBITAK BILGEM Software Technologies Research Institute Liderahenk permite la Inclusión de Código Remoto. Este problema afecta a Liderahenk: desde 3.0.0 hasta 3.3.1 antes de 3.5.0.

17 Feb 2026, 14:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-02-17 14:16

Updated : 2026-02-18 17:52

NVD link : CVE-2025-7706

Mitre link : CVE-2025-7706

CVE.ORG link : CVE-2025-7706

JSON object : View

Products Affected

No product.

CWE

CWE-306

Missing Authentication for Critical Function

6.1 /10